Aerohive's new IoT safety answer might have blocked Dyn DDoS assaults, firm claims

Picture: iStockphoto/LeoWolfert

On Thursday, Aerohive Networks introduced a brand new safety answer to guard company networks from assaults perpetrated by way of compromised Web of Issues (IoT) units. Aerohive’s present SD-LAN is the inspiration on which the product is constructed.

In accordance with a press launch, it places “safety safety proper on the level the place IoT visitors first touches the community. This offers a primary line of protection for companies towards IoT malware.” It might assist shield companies towards sure assaults just like the Dyn DDoS assault, that occurred partially because of the Mirai botnet. “If the IoT units have been related to our entry factors they usually have been configured correctly, even units compromised with Mirai wouldn’t have had the power to contribute to the DoS assault,” an Aerohive spokesperson stated.

One of many core capabilities of Aerohive’s new answer is a software program-outlined personal pre-shared key (PPSK), which solely permits sure authenticated units to entry the community, the press launch stated. The answer additionally enhances visibility and administration for community units, and permits for firewall enforcement based mostly on deep packet inspection as properly.

SEE: Big data and IoT matter to 56% of organizations (Tech Professional Analysis)

“Using Aerohive’s Software program Outlined PPSK know-how for safe entry by units that don’t have AD accounts has helped us tremendously in holding our community safe,” BJ Stahlin, senior WAN administrator for Ingram Leisure Inc., stated within the press launch. “In distinction with WPA2/PSK, the place a single password is shared by many units on the identical SSID, Aerohive’s PPSK can allow granular authentication with a singular password for every gadget.”

In its press launch, Aerohive claims that greater than 25 billion IoT units might be accessing networks by 2020, with most doing so wirelessly. The thought behind Aerohive’s new answer is that the community itself is the primary line of protection, and as such it ought to each shield the IoT units residing on it, whereas on the similar time being shielded from them.

With its software program-outlined PPSK, every particular person IoT system “can now successfully have a singular password, permitting it to be uniquely recognized and secured on the community,” the press launch said. These keys might be configured or revoked in batches as nicely.

Moreover, visibility options embrace a deep packet inspection firewall, IoT gadget isolation, bandwidth throttling for IoT units, and detection and blocking of DDoS floods. Customers even have entry to context-based mostly entry insurance policies and centrally managed coverage enforcement as nicely.

As famous above, current occasions just like the Dyn DDoS assault spotlight the necessity for extra complete IoT safety. The stability between the comfort provided by IoT units and their potential privateness dangers has been referred to as a security “tsunami” by some.

The three huge takeaways for TechRepublic readers

  1. Aerohive Networks lately introduced a brand new community safety answer to guard towards IoT safety dangers just like the Mirai botnet-powered Dyn DDoS assault.
  2. A software program-outlined personal pre-shared key’s the core software for securing the community, permitting for nearly each IoT gadget to have its personal personal password.
  3. IoT is consistently rising, and is presenting new safety dangers on a regular basis, which is one thing the enterprise ought to be paying shut consideration to.

Additionally see

Leave a Reply

Your email address will not be published.