IN THIS ARTICLE

Johna Till Johnson: Symantec’s Backup Exec 10d
Dave Kearns: Elemental Security’s Elemental Compliance System
Jim Kobielus: U3’s U3 smart-drive
Ira Brodsky: Belkin’s Pre-N wireless LAN
Winn Schwartau: Apple’s MacTel

Going above and beyond

Selected by five Network World contributors, these category-breaking products raise the bar with their novel approaches to solving today's enterprise challenges.

By Dave Kearns, Network World, 02/27/06

The category breaker: Elemental Security's Elemental Compliance System 1.1
Selected by Dave Kearns, independent consultant, "Identity Management" and "Windows Networking Strategies" newsletter author

What makes this product so special? Last fall, in the Windows Networking Strategies newsletter, I waxed rhapsodic about what I saw as the end of the traditional firewall, defined as a fence around our network, or a fortress to keep out the bad guys, typically built around the enterprise's internal network. The border has all but disappeared, as connections are made (and dropped) rapidly by all sorts of devices situated in all sorts of places. What was needed, I said, was a new class of service - a "firedoor." This would be a proactive and reactive service that could respond to threats as needed without blocking legitimate traffic. It was a new category, but there was one contender for the niche, the category breaker - Elemental Security.

Information Security for Database Professionals: View now

I speculated that a firedoor should react to anomalous activity that may be intended to harm the network or the organization by creating an isolation area where all of the potentially malicious packets are quarantined. But the firedoor should quarantine by event, providing separate areas for each attempt to breach security. The firedoor would then respond to the potential threat by sending back legitimate packets as expected. It not only would alert security personnel and log actions (just as firewalls do) but also would begin the forensic process to trace the attack as well as its source. In other words, firedoors are active while firewalls are passive. You also could say firedoors are firewalls coupled with policy-based computing.

Elemental Security, a recent start-up, aims to make policy-based computing (typically concerned with user activity) easier to implement and monitor. It also makes it more all-encompassing, as it provides the ability to monitor hardware and users from the same box.

Elemental wants to be the fuel that powers your network. That's a pun, because the essence of its offering is Fuel, a scripting language for policy writing. Guido van Rossum, who created the Python language, developed Fuel for Elemental Security. It's an English-like (in words and syntax) language that lets you express policy in constructs such as "Engineering cannot talk to HR Servers," in which engineering is an Active Directory group and HR Servers could be Windows boxes, Linux servers or Solaris hosts - or any combination of them.

React: Give us your thoughts on the issues here.

Start a public discussion with other Network World users on this article (scroll up to send this article to a colleague).
| Register for an account (Why you should)

Note: Register to have your user name appear; otherwise your comment will show up as "Anonymous."

*Anonymous comments will only appear once they are approved by the moderator.

Security management vendors promise to keep customers in compliance
04/04/05

Elemental aims to make policy-based computing easier to implement and monitor
05/25/05

Click Here

Sign up for the Video & Podcast Alert Newsletter

Does Verizon's Voyager stack up to the iPhone?
Keith checks out the Verizon Wireless Voyager multimedia phone, and compares it to Apple's iPhone. Watch now

IT Tools & How To's, Just Posted

When Corporate Network Safety Starts at Employees' Homes: Protecting Your Network from Home Wireless Hackers

How WatchGuard Could Have Saved Hannaford and TJX Money: Real-World ROI Calculations for Retail Network Security Solutions

Top 10 Threats to SME Data Security (and what to do about them)

Governance and Risk Management: The New Security Reality

IT Management is Broken: It's Time to Stop the Silo Madness

Click Here

Most Popular IT Tools & How To's

Optimizing IT Budgets In tight Economic Times

Getting to Know You: Managing Identity and Network Security

Defending Against the Insider Threat

The Tripwire HIPAA Solution: Meeting the Security Standards Set Forth in Section 164

The Business Case for Server Virtualization

Click Here

Drive down operating expenses and mitigate risk with app centralization - Live May 12.- Juniper Networks
ESG: Networked storage is the best option for SharePoint Servers- NetApp
Dramatically simplify DR planning in your virtual environment.- NetApp
Enter the Great NetScaler VPX Challenge!- Citrix
The end of phone tag. Sprint Mobile Integration. - Sprint
FREE Data Leakage for Dummies Book from Sophos. Request your copy today!- Sophos
Automate mobile management and get your email, calendar and device issues under control.- Zenprise
Identity Management Solution Center: guides, informative downloads, videos, and more.- Sun Microsystems
Sun Identity Management - simple, open and proven solutions- Sun Microsystems
Make Apps Internet ready. Visit the Application Performance Solution Center- Akamai

The title and comments fields must be filled out to continue.
Your name:	Your e-mail address:
*Subject
*Comments

	Security: Threat Alert
	Security Strategies
	Security Alert
	Security: Identity Management Alert
	Security: Network Access Control Alert
	Compliance Alert
	Unified Communications Alert
	Network World Daily
	All newsletters

Username:	Password:

Security

Going above and beyond

Selected by five Network World contributors, these category-breaking products raise the bar with their novel approaches to solving today's enterprise challenges.

Related links

IT Tools & How To's, Just Posted

Network World Newsletter

Most Popular IT Tools & How To's