Find White Papers
Home
About Us
List Your Papers
Popular Research | Technology Topics | Vendor Directory
    
> Trusted Network Tech > NAC NAC: Who’s Really There? (And What Are They Bringing Inside)

NAC NAC: Who’s Really There? (And What Are They Bringing Inside)

White Paper Published By: Trusted Network Tech

This paper addresses several issues organizations should consider when analyzing the efficacy and costs of NAC solutions and looks at a complementary alternative technology based on TNT’s Identity™, which helps address and overcome some limitations of NAC solutions.



Tags : 
access control, nac, network, identity management, network access control, security, internet security, trusted network tech
Trusted Network Tech
Published:  Nov 06, 2006
Type:  White Paper
Length:  12 pages


NAC, NAC: Who's Really There
(and What Are They Bringing Inside?)
A Look at NAC, IT Risk and Alternative Solutions
September 2006







3600 Mansell Road
Suite 200
Alpharetta, GA 30022
888.566.9143
www.trustednetworktech.com NAC, NAC: Who's Really There (and What Are They Bringing Inside?)
Contents
Introduction .....................................................................................................................................................1
What's the True Risk with Compromised Endpoints and Users? ...................................................................2
What Needs to Be Done .................................................................................................................................2
How NAC Works .............................................................................................................................................4
Example NAC Implementations ......................................................................................................................4
NAC Challenges..............................................................................................................................................5
An Alternate Path: TNT Identity ......................................................................................................................6
Example TNT Implementations.......................................................................................................................8
The Approach: Bypass NAC or Extend It?......................................................................................................9
Conclusion ................................................................................................................................................... 10
© 2006 Trusted Network Technologies, Inc. page ii
NAC, NAC: Who's Really There (and What Are They Bringing Inside?)
Introduction Industry chatter about NAC technologies has reached a roar. Network security research firm Infonetics has projected that revenues for NAC solutions will soar a staggering 1,100% by 2008.
So what's all the noise about? NAC stands for network admission control or network access control, depending on whom you ask. Either way, most NAC technologies have the same objective: Make certain that only healthy computers connect to the network. NAC seeks to make sure a computer has stuff it needs (updated patches, antivirus software, firewall) and doesn't carry bad stuff (viruses, worms, spyware) before letting it on the network. Most NAC solutions also quarantine unfit computers, limiting them to a certain network segment until they get healthy. Organizations view NAC as a way to prevent the billions of dollars in damages from viruses like Blaster and SQL Slammer.
The stakes have never been higher. The CIO of several Southeastern hospitals told TNT recently about a worm from a compromised laptop that shut down IT operations for an entire hospital. The incident had an obvious business impact, but it also threatened patient care. Lives were at risk, not just data. This troubling example adds to a growing list of similar events affecting organizations of all types and putting people, performance and profitability in jeopardy.
But does NAC cure all network and information security ills? Well, no. NAC authenticates a computer to the network if it has the proper health posture (pre-admission). Most NAC technologies don't know or control where users and computers go or what they do once they on the network (post-admission). Also, NAC solutions often require costly new or upgraded network hardware and software.
So how should business and network managers and executives evaluate evolving NAC technologies? The focus should be on mitigating risk, controlling access and protecting data-and determining which technologies do these things simply and inexpensively. All the technical discussions about standards, networks, firewalls, switches and servers don't alter these core objectives.
With that context, this paper addresses several issues organizations should consider when analyzing the efficacy and costs of NAC solutions:
. The damage compromi... [download for more]

Browse Technology Topics

Data Center

Virtualization, Cloud Computing, Infrastructure, Design and Facilities, Power and Cooling, Green Computing  
    

Data Management

Application Integration, Analytical Applications, Business Intelligence, Configuration Management, Database Development, Data Integration, Data Mining, Data Protection, Data Quality, Data Replication, Database Security, EDI, SOAP, Service Oriented Architecture, Web Service Management, Data Warehousing  
    

Enterprise Applications

Application Integration, Application Performance Management, Best Practices, Business Activity Monitoring, Business Analytics, Business Integration, Business Intelligence, Business Management, Business Metrics, Business Process Automation, Business Process Management, Call Center Management, Call Center Software, Change Management, Corporate Governance, Customer Interaction Service, Customer Relationship Management, Customer Satisfaction, Customer Service, EBusiness, Enterprise Resource Planning, Enterprise Software, EProcurement, Extranets, Groupware Workflow, HIPAA Compliance, IP Faxing, IT Spending, Marketing Automation, Performance Testing, Product Lifecycle Management, Project Management, Return On Investment, Risk Management, Sales & Marketing Software, Sales Automation, Server Virtualization, Simulation Software, Supply Chain Management, System Management Software, Total Cost of Ownership, Video Conferencing, Voice Recognition, Voice Over IP, Workforce Management, Incentive Compensation, Spend Management, Manufacturing Execution Systems, International Computing  

Human Resource Technology

Human Resources Services, Payroll Software, Time and Attendance Software, Workforce Management Software, Financial Management, Employee Monitoring Software, Employee Training Software, Recruiting Software/Services, Employee Performance Management, ELearning, Benefits Management, Expense Management  
    

IT Career Advancement

Cisco Certification, Microsoft Certification, Linux Certification, Network Security Certification, Software Development Certification  

IT Management

Employee Performance, ITIL, Productivity, Project Management, Software Compliance, Sarbanes Oxley Compliance, Service Management, Desktop Management  
    

Knowledge Management

Collaboration, Collaborative Commerce, Contact Management, Content Delivery, Content Integration, Content Management System, Corporate Portals, Customer Experience Management, Document Management, Information Management, Intranets, Messaging, Records Management, Search And Retrieval, Search Engines, Secure Content Management, SLA  

Networking

Active Directory, Bandwidth Management, Convergence, Distributed Computing, Ethernet Networking, Fibre Channel, Gigabit Networking, Governance, Grid Computing, Infrastructure, Internetworking Hardware, Interoperability, IP Networks, IP Telephony, Local Area Networking, Load Balancing, Migration, Monitoring, Network Architecture, Network Management, Network Performance, Network Performance Management, Network Provisioning, Network Security, OLAP, Optical Networking, Quality Of Service, Remote Access, Remote Network Management, Server Hardware, Servers, Small Business Networks, TCP/IP Protocol, Test And Measurement, Traffic Management, Tunneling, Utility Computing, VPN, Wide Area Networks, Green Computing, Cloud Computing, Power and Cooling, Data Center Design and Management, Colocation and Web Hosting  
    

Platforms

AS/400, Domino, Linux, Microsoft Exchange, Oracle, PeopleSoft, SAP, Siebel, Solaris, Tivoli, Unix, Web Sphere, Windows, Windows Server  

Security

Access Control, Anti Spam, Anti Spyware, Anti Virus, Application Security, Auditing, Authentication, Biometrics, Business Continuity, Compliance, DDoS, Disaster Recovery, Email Security, Encryption, Firewalls, Hacker Detection, High Availability, Identity Management, Internet Security, Intrusion Detection, Intrusion Prevention, IPSec, Network Security Appliance, Password Management, Patch Management, Phishing, PKI, Policy Based Management, Security Management, Security Policies, Single Sign On, SSL, Secure Instant Messaging, Web Service Security, PCI Compliance, Vulnerability Management  
    

Software Development

.NET, C++, Database Development, Java, Middleware, Open Source, Software Outsourcing, Quality Assurance, Scripting, SOAP, Software Testing, Visual Basic, Web Development, Web Services, Web Service Security, XML  

Storage

Backup And Recovery, Blade Servers, Clustering, IP Storage, ISCSI, Network Attached Storage, RAID, Storage Area Networks, Storage Management, Storage Virtualization, Email Archiving, Data Deduplication  
    

Wireless

802.11, Bluetooth, CDMA, GPS, Mobile Computing, Mobile Data Systems, Mobile Workers, PDA, RFID, Smart Phones, WiFi, Wireless Application Software, Wireless Communications, Wireless Hardware, Wireless Infrastructure, Wireless Messaging, Wireless Phones, Wireless Security, Wireless Service Providers, WLAN  
Search