In networks, air gap is a type of security where the network is secured by keeping it separate from other local networks and the Internet. While this provides security, it also limits access to the network by clients.
Portions of this definition originally appeared on CIO Insight and are excerpted here with permission.
How do air-gapped networks work?
In a typical network, users are able to connect to and transfer data in a network using external connections, such as public network access and emails. However, these connections make it easier for hackers to gain access to a private network.
In comparison, air-gapped networks require external, non-network means of transfer for data movement to happen. These methods may include removable hardware or media like a USB drive and transient devices like laptops. Both require a human with physical access to both machines along with the proper authentication credentials.
As few are willing to take the time and risk once the attack vector has been complicated through isolation, adding a gap of air between private and public networks deters most attackers.
How secure are air-gapped networks?
Air-gapped networks offer a high form of network security, as the isolation of the network makes it difficult for information to accidentally or purposefully be moved to and from the network.
Moreover, air gapping deters attackers since they need in-person access to a network device rather than being able to hop over from another network or to get login credentials through phishing.
Despite these deterrents, there are still several valid concerns regarding the physical security of air-gapped networks. The transient devices allowed to connect to the network can get lost or stolen, and authorized users may accidentally or purposefully use transient devices to carry information or malware to and from the network.
The Stuxnet worm case from 2010 is a strong example of how network hardware can cause damage, as that particular strain of malware spread to Iranian industrial and nuclear plants via USB drives.
Go deeper on the security of air-gapped networks | CIO Insight
Why are air-gapped networks important?
While there are concerns about the current and future effectiveness of air-gapped networks, especially since the growth of AI and IoT devices requires always-on communication between public and private networks, there are still many security and workflow advantages, such as:
- Air-gapped networks increase isolation and secrecy, which increases security in high-risk scenarios and industries such as the government and military.
- Companies can easily protect and separate highly-secure programs that don’t need constant network access.
- Remote hacking is nearly impossible; hacking is made difficult by requiring attackers to be onsite.
- Payment and controls systems can be kept separate from the rest of a business’s public or private networks.
As security breaches and their costs are on the rise, an air-gapped network can be a great way to ensure the protection of data and users from a growing number of cyber threats.