Skip Links

Network World

RE: NAC alternatives hit the mark

By Mikal Saboor on Mon, 07/30/2007 - 4:26pm

Having been a longterm employee at Sygate. I think your article really hit the mark. This is the type of coversations I have been having with customers for the past 4 years.

Good Luck,
Mikal Saboor
Symantec Corporation

Re: NAC alternatives hit the mark.

Tags:

re: NAC alternatives hit the mark

0
By Aaron (not verified) on Wed, 08/01/2007 - 1:28pm.

Not to discount this article, but just as another point of reference, here's a link to a recent Gartner MarketScope document on NAC where they provide their perspective on most (but not all) of the same providers.

re: NAC alternatives and Gartner

0
By Joel Snyder on Wed, 08/01/2007 - 4:29pm.

I'm not sure that Gartner has anything to say about products (although many IT managers have been deceived by them in the past). Gartner doesn't actually test products, which means that all of their evaluation is done based on talk-talk-talk with people and the occasional look at a GUI. Mandy got the boxes, set them up, and put them through a methodical set of tests.

Gartner analysts are routinely and commonly deceived by marketing, reputation, and slick Powerpoint slides. Their reports generally reflect the status and power of the company they are looking at, combined with the quality of the marketing/PR people who work with Gartner.

jms

you are 100% right. I'm in

0
By Ayed Qarta (not verified) on Thu, 08/02/2007 - 1:54am.

you are 100% right. I'm in kuwait, and alot of people here think about Gartner's-mind-poisoning-reports as a way to convince others to buy their products. I always say, evaluate ... evaluate ... anyone can say anything .. they do have skills to convince u about anything, but when it come to the test, it'll fade away the dark and u'll see the truth about the product

All the solutions using 802.1x could have benefited from the TPM

0
By STEVEN SPRAGUE (not verified) on Thu, 08/02/2007 - 9:52pm.

To all,

Trusted Platform Modules have two roles in the NAC world. The one most discussed is the use of the TPM for Platform Trust Services as part of TNC but the one that is compatible for every impementation today is the use of the TPM for machine identity with 802.1x. Almost every new enterprise has a TPM, it is trivial to turn on the technology and use it to hold a certificate for either IPSEC or 802.1x. My company supplies the software that comes with dell for FREE to enable this today.

How do you do it
Turn on the TPM in Bios and follow ownership instructions

Once a Certificate server is contacted to download a client cert select advanced and select the WAVE TPM CSP. This will cause the key pair to be generated in the TPM and the secret key can nevery be exported from the CHIP.

This creates a uniqe tamper resistant machine identity that can not be stolen or compromised by any software.

Any NAC solution will benefit from strong machine authentication ensuring that the correct machines are being measured on the network.

This is a very low cost security enhancement that delivers REALLY big returns for IT security.

For more information on setting up a 802.1x solution look at our wireless white paper on our web site www.wave.com. We can take you step by step through a simple setup. This should work with every 802.1x based NAC solution.

If you want to manage hundreds of TPMs remotely we do make server software to centrally manage the TPM today.

Steven Sprague
CEO
Wave Systems Corp.
Building the software to manage and Deploy Trusted computing devices.

The truth about NAC with Joel Snyder

0
By Microsoft Subnet on Fri, 08/03/2007 - 2:15pm.

See Microsoft Subnet for more Microsoft-related news, blogs, security alerts, technical group.

Network World will be hosting a live chat with security guru Joel Snyder on NAC.
2 p.m. EDT, Tuesday, August 28
http://www.networkworld.com/chat/

This will be a great way to get your questions answered.

NW's NAC Product Evaluation Misses the Mark

0
By Dana Hendrickson on Wed, 08/08/2007 - 5:25pm.

Despite the natural positive reaction from vendors whose products ranked high in the NAC Scorecard, after eagerly awaiting for the results of this heralded NAC product evaluation I am extremely disappointed by the lack of meat on the bones.

You can read and comment on my candid assessment of this article on at my

blog.

I expected a lot more from NW. Is this article simply the first in a series on these tests?

Dana Hendrickson

Publisher, Secure Access Central portal

Network World NAC Test Results: Did Cisco get a fair shake?

0
By Cisco Subnet on Wed, 08/22/2007 - 1:17pm.

The man who wrote the book about Cisco NAC doesn't think so. Read what Jamey Heary, author of Cisco NAC Appliance, and Cisco Subnet blogger had to say about the test in his blog here.

What about HP?

0
By Anon on Wed, 08/27/2008 - 4:52am.

Nice review. As I am jsut looking for a NAC solution I came to HP´s "ProCurve Network Access Controller 800" and asking myself what can be expected from it...

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

Post new comment

The content of this field is kept private and will not be shown publicly.
  • You can use BBCode tags in the text.
  • Lines and paragraphs break automatically.
  • Allowed HTML tags: <p> <strong> <i> <br /> <br> <ul> <ol> <li> <dl> <dt> <dd> <blockquote>

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Welcome, visitor. Register Log in
Advertisement: