Wi-Fi Security Specifications and Track Record of Corporate Network Implementations

When connecting the wireless vibration meter "conanair" to a factory's internal network (wireless LAN environment), we disclose the detailed communication standards, encryption methods, and authentication security specifications required by internal IT security departments and system administrators.

conanair has a proven track record of clearing the extremely strict security screenings of major Japanese corporations, including JERA, DENSO, and Maxell, and has been approved for connection and actual operation on corporate networks. Please use the following specifications, which comply with professional network management regulations, as technical documentation for internal applications.

Wireless LAN (Wi-Fi) Communication Standards and Connection Modes

conanair operates by selecting the optimal communication standard depending on the operational method: Manual Mode for routine inspections or Auto Mode for continuous monitoring.

• Manual Mode (during routine measurement): Supports the IEEE 802.11g standard and performs one-to-one local communication with the worker's smartphone or tablet terminal.
• Auto Mode (during permanent installation monitoring): Primarily supports the IEEE 802.11n standard to ensure high-speed and stable communication. Communication via IEEE 802.11b and IEEE 802.11g is supported only when explicitly requested by the customer-side Wi-Fi access point equipment; otherwise, the IEEE 802.11b/g standards are not used.

Encryption and Supported Encryption Methods

To prevent interception of communication data and unauthorized access, conanair mandates strong encryption for all Wi-Fi communications. It will never automatically connect to or communicate with a network in an unencrypted environment (open setting), except when the counter-access point explicitly requests an unencrypted configuration.

• Encryption method for Manual Mode (during routine measurement): Supports WPA2/(TKIP/CCMP) to establish a secure local communication path with the terminal.
• Encryption method for Auto Mode (during permanent installation monitoring): Fully supports "WPA2/AES," the robust encryption standard considered the benchmark for enterprise networks.
• Communication topology: To maintain ironclad network security, it only supports "Infrastructure Mode," which communicates via an access point. Ad-hoc mode, where terminals link directly to each other, is not utilized.

Prohibited and Non-Utilized Items in Network Management

Ambiguous access controls that threaten the security design of the internal network, as well as outdated communication modes with recognized vulnerabilities, have been completely eliminated.

• Access control using only a common ESS-ID: Never utilized due to the high security risks involved.
• Restrictions on outdated encryption methods (WEP and WPA/TKIP): Supported solely to maintain compatibility if the customer's network equipment is a legacy system and explicitly requests it. WEP and WPA/TKIP are not used unless requested by the customer's equipment.

Radio Interference with Existing Internal Wireless LAN Environments

conanair will not interfere with or disrupt the existing wireless LAN (Wi-Fi) environment inside the factory. However, this excludes existing wireless LAN environments that are not properly planned or operated, such as cases where an excessive number of client devices exceeding the equipment's processing capacity are connected, or where improper channel design has been implemented.

Even in a wireless LAN environment where channels are properly planned and operated, a theoretical drop in throughput (communication speed) is physically unavoidable for other communication devices sharing the same Wi-Fi channel. This is due to the inherent characteristic of Wi-Fi, where a predetermined communication capacity per wireless channel is shared among all active devices.

However, conanair boasts an extremely efficient data transfer design utilizing our patented "under-sampling" technology, resulting in a very small amount of data traffic per transmission. Therefore, the reduction in throughput for other internal systems or communication devices using the same channel is negligible. There is no concern about straining the traffic of the overall corporate network.

conanair's Proprietary Additional Security Features

In addition to standard Wi-Fi encryption and authentication methods, conanair implements the following unique security features at both the hardware and application layers.

Thorough Network Isolation in Manual Mode

When operating in Manual Mode, conanair functions as a completely independent and isolated local network. Because it is segregated from any external networks, including the internal LAN, the pathway for unauthorized intrusion into core corporate systems via the sensor (stepping-stone risk) is completely blocked.

• Strict limit on simultaneous connections: The number of simultaneous connections to the conanair unit's Wi-Fi access point function is strictly limited to a maximum of "one device." This prevents unintended remote operation conflicts or intercept connections by third parties at the system level.
• 2-minute automatic shutdown: If two minutes pass without a Wi-Fi connection being established with a terminal, conanair automatically shuts down the system. This functions not only to prevent unnecessary battery drain but also as a security measure to avoid broadcasting radio waves within the factory unnecessarily.

Mandatory Application Authentication in Auto Mode

For continuous monitoring in Auto Mode, strong mutual authentication is mandatory during communication between the conanair unit and the base station application (PC).

• Pre-shared credential (authentication key) method: To prevent erroneous data transmission to suspicious access points or spoofed base stations, a unique "authentication key file" autonomously generated by conanair must be installed and shared in advance on the customer's base station application (PC).
• Application layer encryption: In the initial sequence where authentication information is exchanged between the base station and conanair, advanced application-level encryption is executed in tandem with Wi-Fi encryption, protecting authentication credentials with a double barrier against leaks.

30-Day Free Trial & Inquiry

Try conanair for free for 30 days. Here is what our users are saying:

• Easy installation for immediate use
• No app required; operate via web browser
• No cloud required for fully automatic measurement
• Affordable, including dedicated software

Try equipment anomaly detection and predictive maintenance for free. Please feel free to contact us.

30-Day Free Trial & Inquiry

Try conanair for free for 30 days. Here is what our users are saying:

• Easy installation for immediate use
• No app required; operate via web browser
• No cloud required for fully automatic measurement
• Affordable, including dedicated software

Try equipment anomaly detection and predictive maintenance for free. Please feel free to contact us.

前のページ

FAQ

次のページ

Product Warranty