MHay Wireless

Information about MHay Wireless

Published on June 19, 2007

Author: Belly

Source: authorstream.com

Content

Armed and Untethered:Wireless Security on Campus:  Armed and Untethered: Wireless Security on Campus April 18, 2007 Marilyn Hay Manager, Network Management Centre UBC Information Technology UBC Wireless Network - Background:  UBC Wireless Network - Background Basic component in 2001 of the University Networking Program (UNP) and E-Strategy RFP completed to choose vendor and integrator Initial scope completed in 2 years, on time and within budget 20% of $30.6M wired network capital project Installation of 1200 IEEE 802.11b Cisco 1131 APs, 200 distribution switches 150+ buildings, covering 600 acres Fiber, gigabit Ethernet core network (4x4507, 2x6509) Wireless authentication gateway/routers (4xColubris CN3500) RADIUS authentication servers (2xLinux Servers with Radiator) AP Manager platform (Cisco WLSE) Wireless Network Management Systems (2xLinux Servers with WNMS, syslog, DHCP) Website for wireless.ubc.ca Upgrade in 2004 to Support newer radios 1400 Cisco AP1200 supporting IEEE 802.11g Wireless Network - Current State:  Wireless Network - Current State Upgrade completed in 2006 to ‘Next Generation’ – Cisco Airespace Technology shift to smart central controllers rather than intelligent APs Entered agreement with Cisco to install appliance controllers (4x4404 controllers) with transition to 6509 Wireless Service Modules (WiSM) 8 WiSM blades in production with a failover configuration Equals 16 controllers, each controller can support 150 APs. Each WiSM blade is capable of supporting up to 300 APs each. New software management tools for large installations AirMagnet – RF Surveyor and Management Cisco WCS – Entire Network Monitoring, AP Stats, User Stats Airwave Enterprise – Much like WCS but offers more flexibility Authentication systems upgraded to address number of users 2xColubris CN5500 for UBCV, 2xCN3500 at UBCO, CN3500 at VGH SSIDs in use ubc, ubcsecure, ubcdevice, telephony, FatPort, eduroam Coverage - Point Grey, Robson Square, Kelowna (UBCO), VGH andamp; DHCC (through partnership with Vancouver Coastal Health Authority) Wireless Network Services Overview:  Wireless Network Services Overview Lessons Learned:  Lessons Learned Utilization High user adoption 1,400 unique users / day in 2003 to nearly 10,000 in March 2007 Challenging for management tools – time to push out config changes, db size SSID: open WEP authentication not offered False illusion of security, easily cracked in a few minutes Open authentication to UBC LDAP services (Campus Wide Login, CWL) with SSL encryption Easier to use for most users - 80% default to Windows wireless networking No security or encryption between client and AP Users are informed on portal to use encryption for applications (UBC VPN service, ssh) Website documentation provided on ubcsecure SSID: ubcsecure (802.1x, WPA,TKIP,PEAP) Slow adoption, more setup steps needed by PC user. No third party client supplicants or installations – this is not supportable Application security is still needed Early Windows Vista incompatibilities – may be fixed by a radiator 3.17 upgrade Security Success Factors and Issues :  Security Success Factors and Issues Physical Security of APs Generally APs are hidden from view or locked in enclosures Management software helps to alert missing APs RF Management UBC RF Policy in place Necessary to enable effective policies for interference and rogue APs Enforcement is difficult Housing areas are generally not covered with wireless – too much interference from other devices Management software Required for AP management Campus IT Security and Appropriate Use Policies Dedicated Implementation and Operational Teams Regular service meetings from all support areas FatPort pilot project Extending secure network access for UBC community Removes the need to provide guest / conference UBC accounts and billing Future:  Future Extending Coverage - campus Mesh technologies being explored mainly for outdoor and small remote sites Roaming capabilities to be maintained Extending Coverage – off campus – eduroam project Confederation policies between participating organizations required Increase ubcsecure use Awareness campaigns needed for value of security Newer client OS’es are helping to make this easier RF Telephony deployments Possibly increasing the deployment of wi-fi phones Waiting for 3-way and 4-way phones (cellular/802.11b/g/a) Funding Presently there are no client costs - further central funding needs to be secured.

Related presentations


Other presentations created by Belly

Capital budgeting
28. 04. 2008
0 views

Capital budgeting

Nice pics slides
17. 09. 2007
0 views

Nice pics slides

perceptron 2 4 2008
30. 04. 2008
0 views

perceptron 2 4 2008

pham07
18. 04. 2008
0 views

pham07

FC STONE GREAT WALL1
17. 04. 2008
0 views

FC STONE GREAT WALL1

Sauter Nuts Bolt ETFs
16. 04. 2008
0 views

Sauter Nuts Bolt ETFs

UnivOfGuelphNov26th
14. 04. 2008
0 views

UnivOfGuelphNov26th

fujiwara
13. 04. 2008
0 views

fujiwara

Week 08 Finance
10. 04. 2008
0 views

Week 08 Finance

Lct1
09. 04. 2008
0 views

Lct1

outlook
19. 06. 2007
0 views

outlook

Microsoft Windows Vista
19. 06. 2007
0 views

Microsoft Windows Vista

2004 presentation
13. 09. 2007
0 views

2004 presentation

Australian
13. 09. 2007
0 views

Australian

NBB
13. 09. 2007
0 views

NBB

Thilo Ewald ppt
13. 09. 2007
0 views

Thilo Ewald ppt

20031216 NASANIH presentation
05. 10. 2007
0 views

20031216 NASANIH presentation

mna presentation
17. 10. 2007
0 views

mna presentation

lect29 groupwords
18. 10. 2007
0 views

lect29 groupwords

Essential Q Imperialism 2
22. 10. 2007
0 views

Essential Q Imperialism 2

p puska
07. 09. 2007
0 views

p puska

Productivity
07. 09. 2007
0 views

Productivity

honeyPots
13. 09. 2007
0 views

honeyPots

NDB Bensouda
23. 10. 2007
0 views

NDB Bensouda

181105
24. 10. 2007
0 views

181105

METO200Lect19 20
05. 10. 2007
0 views

METO200Lect19 20

oksupercompsymp2006 talk matrow
17. 10. 2007
0 views

oksupercompsymp2006 talk matrow

mareyes
25. 10. 2007
0 views

mareyes

2 01 3
29. 10. 2007
0 views

2 01 3

Online Class Evaluations 8
30. 10. 2007
0 views

Online Class Evaluations 8

1 3Grand father Journey
02. 11. 2007
0 views

1 3Grand father Journey

TuijaKuisma
07. 09. 2007
0 views

TuijaKuisma

Metallsektor
14. 11. 2007
0 views

Metallsektor

insects in out
13. 09. 2007
0 views

insects in out

oasen
16. 11. 2007
0 views

oasen

Unit 10 Scent Theory
17. 11. 2007
0 views

Unit 10 Scent Theory

SPEAR 2004
21. 11. 2007
0 views

SPEAR 2004

danse macabre
22. 11. 2007
0 views

danse macabre

kmutt
13. 09. 2007
0 views

kmutt

NCUR SDT 4 19 05
04. 01. 2008
0 views

NCUR SDT 4 19 05

gerber colloq UICtop feb2002
15. 10. 2007
0 views

gerber colloq UICtop feb2002

Lioi Altered Version
07. 01. 2008
0 views

Lioi Altered Version

Five Halloween Pumpkins audacity
02. 11. 2007
0 views

Five Halloween Pumpkins audacity

smime
07. 10. 2007
0 views

smime

CdF BEC
20. 11. 2007
0 views

CdF BEC

WEB C Schumacher
23. 10. 2007
0 views

WEB C Schumacher

bsb
13. 09. 2007
0 views

bsb

2006052213550876705
03. 01. 2008
0 views

2006052213550876705

1 11
19. 02. 2008
0 views

1 11

Ukraine
20. 02. 2008
0 views

Ukraine

truck tmp1002
27. 02. 2008
0 views

truck tmp1002

ace program plan
29. 02. 2008
0 views

ace program plan

takala
07. 09. 2007
0 views

takala

464 TM12
14. 12. 2007
0 views

464 TM12

ICEBP presentation for ANZCP A
10. 03. 2008
0 views

ICEBP presentation for ANZCP A

aionescu cmc dec06
30. 10. 2007
0 views

aionescu cmc dec06

creationtalk
11. 03. 2008
0 views

creationtalk

Data Mining 2
12. 03. 2008
0 views

Data Mining 2

Omaha Pres for NAP web2
29. 12. 2007
0 views

Omaha Pres for NAP web2

sustainable development part1
26. 03. 2008
0 views

sustainable development part1

Schrage
31. 08. 2007
0 views

Schrage

IHYJP Kickoff Poster
09. 10. 2007
0 views

IHYJP Kickoff Poster

020703 DHCAL
31. 08. 2007
0 views

020703 DHCAL

Vimpel Com
31. 08. 2007
0 views

Vimpel Com

Overland vista uib itforum
19. 06. 2007
0 views

Overland vista uib itforum

OS Notes
19. 06. 2007
0 views

OS Notes

NVIDIA OpenGL on Vista
19. 06. 2007
0 views

NVIDIA OpenGL on Vista

NonAdmin Pilot
19. 06. 2007
0 views

NonAdmin Pilot

New Mexico NETUG WPF
19. 06. 2007
0 views

New Mexico NETUG WPF

nercomp SIG
19. 06. 2007
0 views

nercomp SIG

MSAM Launch Vista Final Updated
19. 06. 2007
0 views

MSAM Launch Vista Final Updated

MOSS WF Talk
19. 06. 2007
0 views

MOSS WF Talk

More Online Games
19. 06. 2007
0 views

More Online Games

Marl WSUS3
19. 06. 2007
0 views

Marl WSUS3

mail list news
19. 06. 2007
0 views

mail list news

Lenovo UofU
19. 06. 2007
0 views

Lenovo UofU

Lecture II
19. 06. 2007
0 views

Lecture II

Smith F09
13. 10. 2007
0 views

Smith F09

35508
26. 02. 2008
0 views

35508

pinar
19. 06. 2007
0 views

pinar

pgp
19. 06. 2007
0 views

pgp

pessner
19. 06. 2007
0 views

pessner

Overview Presentation
19. 06. 2007
0 views

Overview Presentation

North Dakota Annuity Deck
19. 06. 2007
0 views

North Dakota Annuity Deck

Rutland Presentation plenary4
31. 08. 2007
0 views

Rutland Presentation plenary4

NAMI NC 112707
07. 01. 2008
0 views

NAMI NC 112707

finland poster
07. 09. 2007
0 views

finland poster

sample
27. 09. 2007
0 views

sample

dtk
13. 09. 2007
0 views

dtk

Phenotyping Oxford
17. 10. 2007
0 views

Phenotyping Oxford

dog breeding
19. 11. 2007
0 views

dog breeding

5th trondhiem
29. 11. 2007
0 views

5th trondhiem

policies regs
28. 12. 2007
0 views

policies regs

GetuHailu
13. 09. 2007
0 views

GetuHailu

genealogy
01. 10. 2007
0 views

genealogy

net info 050928
19. 06. 2007
0 views

net info 050928

chap7
15. 10. 2007
0 views

chap7

Rafael Guillen CCAD SIAM mar06
22. 10. 2007
0 views

Rafael Guillen CCAD SIAM mar06

na3 Russia
31. 08. 2007
0 views

na3 Russia

Sois Global Programs3 12 04
31. 08. 2007
0 views

Sois Global Programs3 12 04

sacha
31. 08. 2007
0 views

sacha

amm pres valdez lacnic
22. 10. 2007
0 views

amm pres valdez lacnic

nwnt
19. 06. 2007
0 views

nwnt

STAR shielding 2
13. 11. 2007
0 views

STAR shielding 2

voiceline overview
17. 10. 2007
0 views

voiceline overview

gross PPT
07. 04. 2008
0 views

gross PPT

WP1a
15. 10. 2007
0 views

WP1a

Microarray Data Standard
07. 11. 2007
0 views

Microarray Data Standard

Lim Badejo Dell Presentation 1
19. 06. 2007
0 views

Lim Badejo Dell Presentation 1

HongKong Punkka Salo
07. 09. 2007
0 views

HongKong Punkka Salo

Dvoretsky
31. 08. 2007
0 views

Dvoretsky

qm1 web
03. 01. 2008
0 views

qm1 web

IAPS
07. 09. 2007
0 views

IAPS

yalestudy
28. 09. 2007
0 views

yalestudy

digvlsideslec1
12. 10. 2007
0 views

digvlsideslec1

mead
13. 09. 2007
0 views

mead

bashmakov
31. 08. 2007
0 views

bashmakov