Upload File

how to detect, investigate + resolve rf devices entering

  • Home
  • Documents
  • How To Detect, Investigate + Resolve RF Devices Entering
16
How To Detect, Investigate + Resolve RF Devices Entering Your Facilities Bastille Technical Brief ISART Conference August 12, 2020 Presented by: Dr. Bob Baxley, CTO

Upload: others

Post on 22-Nov-2021

3 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: How To Detect, Investigate + Resolve RF Devices Entering

How To Detect, Investigate + Resolve

RF Devices Entering Your Facilities

Bastille Technical BriefISART ConferenceAugust 12, 2020

Presented by:

Dr. Bob Baxley, CTO

Page 2: How To Detect, Investigate + Resolve RF Devices Entering

Problem Definition and Motivation

Page 3: How To Detect, Investigate + Resolve RF Devices Entering

4.7 BILLION

CELLULAR

PHONES

Source: Statistica

Page 4: How To Detect, Investigate + Resolve RF Devices Entering

8.4 BILLION

BLUETOOTH

DEVICES

Source: Statistica

Page 5: How To Detect, Investigate + Resolve RF Devices Entering

9 BILLION

Wi-Fi

DEVICES

Source: Statistica

Page 6: How To Detect, Investigate + Resolve RF Devices Entering

Source: “Internet of Things forecast,” Ericsson

IoT Devices Growing Fast and 70% Have Radios (Radio = Radio Frequency Communication Interface)

Today there are …

22 billion connected devices, and 15 billion have radios

Page 7: How To Detect, Investigate + Resolve RF Devices Entering

Vulnerable Wireless Devices in the Enterprise Today

7

There is Covert Wireless Throughout Today

Page 8: How To Detect, Investigate + Resolve RF Devices Entering

• Intrusion detection

• Exfiltration detection

• APT detection• Next gen firewalls• SIEMs

Huge Dollars Spent to Monitor

100 Mbps Internet Connections

On-Net Device Visibility Exists

8

Off-Net RF Devices are Invisible

100 Mbps

5 Gbps areLeaving via Radio Signals

NOBODY IS WATCHING!

• Corporate phones

• Personal phones

• Hotspots

• Wearables

• Thermostats

• Sensors

• IoT

Page 9: How To Detect, Investigate + Resolve RF Devices Entering

What Does Bastille Do?

Page 10: How To Detect, Investigate + Resolve RF Devices Entering

Sense & Locate Cellular, Wi-Fi, Bluetooth, BLE and other RF devices/networks through Software Defined Radio (SDR)

10

Page 11: How To Detect, Investigate + Resolve RF Devices Entering

• Nuanced policies for wearables in restricted spaced

• Differentiation between paired and unpaired devices

• Alerting on pairing violation

Bluetooth Pairing Policy Enforcement

Page 12: How To Detect, Investigate + Resolve RF Devices Entering

Bastille Persistently & Accurately Locates

Individual Devices in Real Time

• Bastille accurately locates individual phones and other devices and puts real time dots on a map

• Digital demodulation means that we can localize co-located phones

Bastille stores location/device history for

after-event analysis and forensics

Cell Phone Location

Page 13: How To Detect, Investigate + Resolve RF Devices Entering

13

Whitelist

Network Connection

Geofence

Incident Response

Phone, Email, SMS

MDM / UEM

Physical Security Tools

Policy Types Automated ActionsD

evi

ce P

olic

y &

Au

tom

atio

n

Page 14: How To Detect, Investigate + Resolve RF Devices Entering

How does Bastille do that?

Page 15: How To Detect, Investigate + Resolve RF Devices Entering

15

Bastille Sensor Arrays

● 25 MHz - 6 GHz visibility

● FPGA on-board for pre-processing

● UL Certified to work in the Plenum space

above ceiling tiles

● FCC Certified as 100% passive

● No Moving Parts○ Absolutely no fans. Fan failure can lead to sensor

overheating and failure.

○ Advanced sensor power management can use

POE+ or wall power barrel connector

● Real-Time Sensor Health Monitoring and Fail

Safe○ Automatic alerting if an individual sensor fails

○ Identification of which sensor has failed

○ System operation continues if a single sensor fails

Page 16: How To Detect, Investigate + Resolve RF Devices Entering

16

Analytics /

Machine Learning

API

Bastille Distributed Enterprise Architecture

Fusion Center

1. Customer Site2. Private Customer Cloud 3. Bastille Secure Cloud


Physics - Collision Detection...Physics - Collision Detection Introduction One of the most important aspects of a realistic physics system is the ability to detect and resolve the

DAVINCI RESOLVE GUIDE

Alchemist XF Understanding Cadence - SAM · PDF fileAlchemist XF Understanding Cadence Cadence, Detect Film Detect . Detect Detect Detect

WEEVIL project - Resolve Project – Resolve Project€¦ · WEEVIL project RESOLVE project’sfinal event 2018/04/25. Introduction ... Ergonomic analyses: anthropometry, ... Pincer

Fidelis Email Security for Office 365 · Fidelis Cybersecurity protects the world’s most sensitive data. We reduce the time it takes to detect attacks and resolve security incidents

The Open Notebook · Radio echo sounding (RES) is a suitable technique to resolve this dispute, because low-frequency radars have been used extensively and successfully to detect

EG Series Screw Air Compressors - Elgi · a multi-product, multi-market enterprise providing total compressed air ... • Provision for entering Latitude and Longitude to detect machine

Document- "Climate Resolve"

Reminder Dialogs. Introduction Reminder Dialogs allow a user to resolve the reminder by entering data into the progress note and PCC Saves a step and

Resolve to achieve

DaVinci Resolve

GPGPU Lessons Learned...3 phases to every simulation clock tick Integrate positions and velocities Detect collisions Resolve collisions Integration is embarrassingly parallel No dependencies

eProcurement Entering a catalog requisition eProcurement Entering

WOTR’s UNWAVERING RESOLVE

Bernoulli Resolve

By Mrs. Snehal Jain jain.pdf · 2019-05-09 · Objectives : •To detect the effects of smoking, alcohol consumption, use of carbide and phenol on body and role of Ayurved to resolve

Maersk Resolve - DROPSOnline

The spectral resolution of x-ray telescopes has improved many hundred-fold over the past decade, enabling us to detect and resolve emission lines in hot

2013 ODYSSEY - honda.ca · playing your favourite song a snap. The innovative available blind spot information system helps you detect vehicles entering your blind spots, giving you

CORPORATE COMPLIANCE PROGRAM MANUAL · The Compliance Program is designed to encourage and promote an organizational culture that strives to prevent, detect, and resolve problems

Sunrise in Gujarat - WeatherSys › downloads › REsolve...entering this nascent sector. It has to be pointed out that none of the other states have released plant-wise generation

Resolve Overview

Delivered as a Service – VS Online -> Azure Portal Preview VSIX integration with VS 2013 Reduce mean time to detect problems Reduce mean time to resolve

How to Detect & Resolve Five Common Citrix XenApp & XenDesktop Performance Challenges

UEM BlackBerry Protect Mobile for...What is BlackBerry Protect? BlackBerry Protect is a suite of features that enhances BlackBerry UEM’s ability to detect, prevent, and resolve security

Kiwok Bodykom Oslo 2007 ver 3 - SINTEF · Select heart beat templates > Detect Ignore Detect Ignore Detect Ignore Detect Ignore Detect Ignore Detect Ignore

CYBER RANGE CASE STUDY: RESEARCH · 2018-03-20 · INCIDENT RESPONSE 4 The ability to detect and resolve problems that threaten people, process, technology and facilities Paul Cichonski,

Recent Developments in Legal Ethics 2019 ABA Ethics Opinions(7) to detect and resolve conflicts of interest arising from the lawyer’s change of employment or from changes in the

ReSolve process

How to Detect and Resolve Today's High-Profile Threats

Context - The Resolve Network | RESOLVE

Dispute Resolve (Employee)

Resolve Halo Vest

Lights Resolve

AvePoint Compliance Solutions for Oil and Gas · 2019-10-24 · Compliance Solutions for Oil and Gas. Prevent Detect Track Respond & Resolve. The risk of non-compliance in the Oil