• Products Overview
• Application Delivery Controllers
  • APV Series Features
  • APV900
  • APV1200
  • APV2200
  • APV3200
  • APV5200
  • APV5200B
  • APV6200
  • AppVelocity
  • AppVelocity-S
  • NetVelocity
• DesktopDirect Remote Access Solution
• Universal Access Controllers / SSL VPN
  • AccessDirect
  • SiteDirect
  • WiFiProtect
  • Array Business Continuity
  • SPX800
  • SPX1800
  • SPX2800
  • SPX4800
  • SPX5800
  • SPX6800
  • SPX5802
  • SPX6802
  • SPX Series Features
  • SPX Series Literature
• Load Balancing & SSL Acceleration
  • TMX Series Features
  • TMX Series Literature
  • TMX1100
  • TMX2000
  • TMX3000
  • TMX5000
• Certificate Authority

 

Array’s WiFiProtect is a comprehensive enterprise Wireless LAN security and admission control solution for enterprise WLAN networks — enabling application-level protection and user-level accountability while maximizing performance and interoperability. With WiFiProtect, productivity gains afforded by WLAN access can be extended for employees, guests, partners and customers alike, without risk of exposure and without sacrificing the end-user experience.

WiFi Security Challenges

The cost of misuse, abuse and hacking of enterprise WLAN networks is huge, including costs of investigations, shut downs and customer restitution, as well as penalties resulting from non-observance of data-privacy regulations – not to mention indirect costs resulting from a tarnished corporate image.

Unfortunately, security inherent in WLAN access points and associated controllers is inadequate. Their encryption is prone to hacking, and when advanced security is enabled, performance and interoperability are adversely affected. Moreover, access points completely ignore the need for differentiated access, application-level control, end-point security and user-level accountability.

Purpose-Built Enterprise Wireless LAN Admission Control

Offloading enterprise Wireless LAN security onto WiFiProtect, access points experience improved interoperability and performance. Because SSL encryption takes place between client browsers and Array, access point security may be turned off to eliminate compatibility issues for unmanaged wireless cards. Offloading compute-intensive encryption to Array hardware, access points run in their powerband performing their core competency.

WiFiProtect SSL encryption is hacker-proof and provides the foundation for advanced security that  ensure enterprise WLANs remain an asset - not a liability.

Captive Portal Technology

Deploying WiFiProtect behind the WLAN access point, end-users must connect to the Array prior to accessing corporate resources or the Internet. Acting as both DNS and DHCP server, Array redirects initial browser requests to a login portal where employees must authenticate and guests must register. Host-checking and remediation ensure managed and unmanaged client devices meet security standards prior to gaining access.

Role-Based Access Partitions

Employees require full network access, partners require access to specific applications and resources, while guests should be provided access only to the Internet. With WiFiProtect, each of these user groups is supported on fully-separate virtual portals - making it impossible for guests to access the corporate network or for partners to access anything beyond their authorization.

Application-Specific Access

While trusted employees receive network-level connectivity, it is often advantageous to limit access for other users and groups to a smaller set of resources and applications. With WiFiProtect’s advanced portal technology, access to specific Web, thin-client and client-server applications can be enabled to minimize network exposure. 

End-Point & Desktop Control

WiFiProtect includes all standard Array SPX Series features such as a security-hardened OS, ACLs, application-layer filtering, DDoS protection and client-side (end-point) security. Cache-cleaning can be enabled to wipe client browsers upon session termination and Secure Desktop can deliver WLAN client sessions within an encrypted vault to prevent data leakage due to local actions such as saving, printing, copying and pasting.

• Hacker-proof hardware SSL encryption provides enterprise WLAN security while improving end-user experience attributes such as performance and device compatibility
  
  
• Captive portal technology automatically funnels all  enterprise WLAN traffic through the scalable WiFiProtect gateway in a transparent, user-friendly manner
  
  
• Support for multiple virtual portals with end-to-end partitioning place employees, partners and guests on fully separate sub-networks, limiting exposure
  
  
• Application-level intelligence enables publishing of specific resources over the WLAN for partner access deployments
  
  
• Reverse-proxy architecture with built-in SSL firewall and end-point security guard the corporate network from attack and prevent WLAN-related data loss

Platform Options
	SPX1800	SPX2800	SPX4800	SPX5800	SPX6800
SSL	HW	HW	HW	HW	HW
Compression	SW	SW	SW	SW or HW	SW or HW
Ports	4 Gig E	4 Gig E	4 Gig E	4 Gig E Optional 2 Fiber	4 Gig E Optional 2 Fiber Optional 2x10 G fiber
Min. Conc. Users	10	10	25	50	100
Max. Conc. Users	100	1200	6000	12,000	64,000
Throughput	50 Mbps	100 Mbps	300 Mbps	850 Mbps	850 Mbps
Form Factor	1RU	1RU	1RU	2RU	2RU
Power Supply	Single	Single	Single	Dual	Dual