8. Wireless IDS/IPS

Until this point, the book has focused on the traditional idea of an Intrusion Detection System/Intrusion Prevention System (IDS/IPS). This typically involves performing an in-depth analysis of captured data frames, determining what constitutes a threat, and then parsing the traffic for any predefined threats. Although this concept works well in a traditional networked environment, the twenty-first century is redefining the reality of where data goes and how it gets there. This chapter focuses on the wireless perspective and examines the technology needed to analyze the airwaves for threats specifically associated with this communication medium.


Unless otherwise stated, this chapter’s contents apply to 802.11-based ...

Get Practical Intrusion Analysis: Prevention and Detection for the Twenty-First Century now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.