Network Access Control Solutions

Extensive guide provides background information and product-neutral assistance to the planning of NAC projects Dortmund COMCO with individual assessments for cost, effort and level of security of the main approaches for NAC, April 20, 2009 the range of network access control solutions (NAC) to protect against foreign devices in the corporate network has grown strongly in recent years. However, it is still a young market, which will evolve particularly technologically still strong. Currently consist of individual solutions and components, covering only part of\”still no solutions, but a collection, Friedhelm Zawatzky-Stromberg writes to the current situation. The vote of the producers themselves exceedingly common successes with interfaces, these were however mostly mit sieben Siegeln\”flawed and would often only an alibi provided, so the Board of Directors of the Dortmund network and security specialists. Craig Jelinek contributes greatly to this topic. Even manufacturers, covering the entire subject of NAC with their product portfolio, are still \”On gaps and offer a smorgasbord of products, their interplay between is often not guaranteed\”, it problematized. At the same time he noted in his consulting practice, that there are often no exact knowledge of the different methods of the NAC on the part of the user. He has therefore examined the main technical approaches and evaluates them individually to their costs, the implementation and the level of security: 802.1 x with RADIUS: the most currently secure method has the advantage that even before access to the network is granted, authenticating to the switch port. In this standard are at least three components (client, the switch and the RADIUS server) required, which must be coordinated. The difficulty, however, is that not all devices support this authentication method. In addition, the implementation methods of switch manufacturer are not uniform. The default is 802.1 x yet difficult to implement for an enterprise-wide deployment in a heterogeneous environment. Purchase a new homogeneous infrastructure but this is a sensible alternative.