Find White Papers
Home About Contact Help
Free Membership Member Login
Sep 5, 2008
View Popular Research Browse Topics Find Business Solutions RSS Feeds List Your Research
Search the Library                  Advanced Search

Getting the Knack of NAC: Understanding Network Access Control

Mirage Networks
By : Mirage Networks
INFORMATION
Published : Mar 23, 2006
Length : 29
Type : White Paper
 
Download Now
Save for Later
  Email This Page
Overview :

This industry report gives you the information you need to make informed decisions about how to secure your network by controlling access and by preventing endpoint infections and policy violations.

  • Part One discusses the market as a whole and where it is headed.
  • Part Two covers the critical pieces of pre-admission NAC that will ensure success.
  • Parts Three and Four discuss post-admission NAC, which includes threat detection as well as quarantine and remediation, and how to make a successful NAC implementation part of your roadmap.
View All Items By This Company
Browse Related Categories :

Access Control

,

Internet Security

,

Network Security

,

Security Management
 
I. Introduction: Network Security

A. Where We Are Now

Today's technology environment is defined by mobility. It's a productivity enhancement few organizations can be without - but the gain in productivity is causing an explosion of network security concerns.

Consider the dramatic increase in the number and capabilities of mobile devices: according to Gartner, the dominant trend in computer buying has shifted to notebooks, which now make up 29% of computers sold in the US and 31% of those sold worldwide. And not only are laptops becoming the computer of choice for many corporate employees, more and more IP-enabled devices are coming into the mix - PDAs, mobile phones, and gaming systems, to name a few, each bringing new security vulnerabilities onto the network. Further enhancing productivity - and jeopardizing network security - is the ubiquity of access. Whether at home, in a hotel, at a Starbucks, or even on a park bench, users require and expect access to corporate networks at a data rate that enables full productivity. The widespread adoption of broadband and wireless networking has made mobile computing the standard, not the exception.

This has created great challenges for IT and security professionals. Controlling the devices accessing the network has become increasingly problematic as these devices move in and out of protected corporate networks, and as the line between office and personal computer blurs or even disappears. And now, it's easier than ever for unmanaged IP devices to make their way into corporate networks.

This technology shift has IT security professionals asking two questions:

How do I control the access to my corporate networking resources?

-and-

How do I ensure that the resources that are allowed on my network aren't creating a security risk?

Before we can answer these questions, we must understand the roots of IT security.

B. How We Got Here

The correlation between productivity-enhancing technology and security technology is not new. As new technologies are adopted, criminal elements find ways to misuse them. Let's examine the origins of three prevalent security technologies: antivirus software, firewalls, and Virtual Private Networks (VPNs), the development of each driven by key advancements in non-security technologies.

1. Antivirus

In the early to mid 1980s, antivirus technology development was driven by the success of MS-DOS, and its impact on businesses and home PCs. A key new capability provided by personal computing was the ability to easily share and transfer files via floppy disks. As file sharing became standard behavior, the first viruses evolved to exploit it. This malware attached itself either to individual files or to the boot sectors of PCs to infect all floppy disks subsequently used on that PC. Antivirus technology arose and was widely adopted to preserve the value of data transfer through external media.

2. Firewalls

Firewalls are often associated with the advent of the Internet, but they actually came about as a result of networking and routing technology. As businesses began to connect their small departmental networks to larger shared networks, concerns arose about the ability of individuals to access computing resources and data on networks that didn't belong to them; the development of the firewall was the result. The firewall inserts itself as a barrier between a local trusted network and one or more external networks, regulating traffic between networks to prevent access to network and system resources from unknown or unauthorized sources. Connection to the Internet and its millions of worldwide users has made firewalls mandatory, and a standard part of virtually all networked environments.

3. Virtual Private Networks

VPNs, while not quite as prevalent as antivirus and firewall technologies, are found in almost all medium to large organizations. The need for VPNs was driven by two factors. First, corporations were looking for alternatives to expensive private networks connecting remote sites. Second, companies needed to enable their employees to connect to their corporate networks remotely. And of course, confidentiality of the data in transmission was critical: because this connection was going over open networks, it was susceptible to eavesdropping for both passwords and data.
Search the Library                  Advanced Search
Today's Popular Reports This Weeks Most Popular Reports Most Popular Topics Vendor Directory Home
About Us Contact Us List Your Papers Partner With Us Site Map