TranslateProject/sources/talk/20190724 When it comes to the IoT, Wi-Fi has the best security.md
DarkSun de30c34e43 选题: 20190724 When it comes to the IoT, Wi-Fi has the best security
sources/talk/20190724 When it comes to the IoT, Wi-Fi has the best security.md
2019-07-26 01:25:35 +08:00

7.3 KiB
Raw Blame History

When it comes to the IoT, Wi-Fi has the best security

Its easy to dismiss good ol Wi-Fis role in internet of things networking. But Wi-Fi has more security advantages than other IoT networking choices. Ralph Gaithe / Soifer / Getty Images

When it comes to connecting internet of things (IoT) devices, there is a wide variety of networks to choose from, each with its own set of capabilities, advantages and disadvantages, and ideal use cases. Good ol Wi-Fi is often seen as a default networking choice, available in many places, but of limited range and not particularly suited for IoT implementations.

According to Aerohive Networks, however, Wi-Fi is “evolving to help IT address security complexities and challenges associated with IoT devices.” Aerohive sells cloud-managed networking solutions and was acquired recently by software-defined networking company Extreme Networks for some $272 million. And Aerohive's director of product marketing, Mathew Edwards, told me via email that Wi-Fi brings a number of security advantages compared to other IoT networking choices.

Its not a trivial problem. According to Gartner, in just the last three years, approximately one in five organizations have been subject to an IoT-based attack. And as more and more IoT devices come on line, the attack surface continues to grow quickly.

[ Also read: Extreme targets cloud services, SD-WAN, Wi-Fi 6 with $210M Aerohive grab and Smart cities offer window into the evolution of enterprise IoT technology ]

What makes Wi-Fi more secure for IoT?

What exactly are Wi-Fis IoT security benefits? Some of it is simply 20 years of technological maturity, Edwards said.

“Extending beyond the physical boundaries of organizations, Wi-Fi has always had to be on the front foot when it comes to securely onboarding and monitoring a range of corporate, guest, and BYOD devices, and is now prepared with the next round of connectivity complexities with IoT,” he said.

Specifically, Edwards said, “Wi-Fi has evolved … to increase the visibility, security, and troubleshooting of edge devices by combining edge security with centralized cloud intelligence.”

Just as important, though, new Wi-Fi capabilities from a variety of vendors are designed to help identify and isolate IoT devices to integrate them into the wider network while limiting the potential risks. The goal is to incorporate IoT device awareness and protection mechanisms to prevent breaches and attacks through vulnerable headless devices. Edwards cited Aerohives work to “securely onboard IoT devices with its PPSK (private pre-shared key) technology, an authentication and encryption method providing 802.1X-equivalent role-based access, without the equivalent management complexities.”

[ Prepare to become a Certified Information Security Systems Professional with this comprehensive online course from PluralSight. Now offering a 10-day free trial! ]

The IoT is already here—and so is Wi-Fi

Unfortunately, enterprise IoT security is not always a carefully planned and monitored operation.

“Much like BYOD,” Edwards said, “many organizations are dealing with IoT without them even knowing it.” On the plus side, even as “IoT devices have infiltrated many networks , ... administrators are already leveraging some of the tools to protect against IoT threats without them even realizing it.”

He noted that customers who have already deployed PPSK to secure guest and BYOD networks can easily extend those capabilities to cover IoT devices such as “smart TVs, projectors, printers, security systems, sensors and more.”

In addition, Edwards said, “vendors have introduced methods to assign performance and security limits through context-based profiling, which is easily extended to IoT devices once the vendor can utilize signatures to identify an IoT device.”

Once an IoT device is identified and tagged, Wi-Fi networks can assign it to a particular VLAN, set minimum and maximum data rates, data limits, application access, firewall rules, and other protections. That way, Edwards said, “if the device is lost, stolen, or launches a DDoS attack, the Wi-Fi network can kick it off, restrict it, or quarantine it.”

Wi-Fi still isnt for every IoT deployment

All that hardly turns Wi-Fi into the perfect IoT network. Relatively high costs and limited range mean it wont find a place in many large-scale IoT implementations. But Edwards says Wi-Fis mature identification and control systems can help enterprises incorporate new IoT-based systems and sensors into their networks with more confidence.

More about 802.11ax (Wi-Fi 6)

Join the Network World communities on Facebook and LinkedIn to comment on topics that are top of mind.


via: https://www.networkworld.com/article/3410563/when-it-comes-to-the-iot-wi-fi-has-the-best-security.html

作者:Fredric Paul 选题:lujun9972 译者:译者ID 校对:校对者ID

本文由 LCTT 原创编译,Linux中国 荣誉推出