Definition
An air gap is a security measure that physically detaches a system, network, or computer from any external connections, such as the Internet or local area network (LAN). It is used on computer networks that contain critical information to prevent cyberattacks.
In an air-gapped system, data can only be transferred by physically carrying it to another device or system or copying it on a removable storage device.
Air Gapping Benefits
- Malware protection. Air gapping prevents the spread of malware because the system and its data are offline.
- Intrusion protection. An air gap safeguards a computer network from intrusions that may cause theft or damage to its digital assets.
Air Gapping Issues
- Insider attacks and data leakage: Because data is transferred through portable media devices, such as USB, a compromised device can introduce internal attacks.
- Manual updates: Since the air-gapped systems aren’t online, the software doesn’t update automatically, and the administrators must implement updates manually.
- Electromagnetic leakage: Air-gapped systems are vulnerable to electromagnetic attacks as hackers can remotely analyze electromagnetic waves that air-gapped computers produce.
- Targeted virus attacks: If the manual software updates have viruses, they can spread across the entire air-gapped computer system.
- Diminished productivity: The absence of an Internet connection can delay or disrupt processes that require only system access.