- Nokia's new N97 vs. the iPhone
- Talk-powered cell phones?
- FBI: Copper thieves jeopardize U.S. infrastructure
- 10 Microsoft research projects
- Smartphone smackdown: Storm vs. iPhone
An industry consortium this week plans to demonstrate a specification for desktop policy enforcement that has been a year in the making.
The Trusted Computing Group's (TCG ) specification, which is scheduled to make its debut at Interop in Las Vegas, offers a way to conduct integrity checks of desktop computers, such as requiring anti-virus or software patch updates before granting network access. While this capability exists in some products, the Trusted Network Connect (TNC) specification is the first attempt to define an open standard for it.
Some consortium members, including Funk Software, HP and iPass, will show how the specification works through software interoperability demonstrations over an HP ProCurve Switch-based LAN.
"Interoperability is important to minimize the ways we have to do this, which today requires custom development with anti-virus vendors and others," says Barbara Nelson, director of advanced technology at iPass, which makes software called Endpoint Policy Management to check desktops for missing anti-virus and software patches.
If the network industry can coalesce around a common way to do integrity checks, it will promote use of the technology, she says.
At this week's demonstration, iPass plans to show how its desktop Endpoint Policy Management software can collect TNC-related information about anti-virus and patch updates on a desktop. The information then will be forwarded to a TNC-capable authentication server from other vendors, such as Funk and Meetinghouse Data Communications. These servers, with added TNC-based code, will evaluate desktops to determine if they should be granted network access.
Paul Crandell, network security program manager at HP, says TCG will work to further develop the basic TNC architecture so that more-complex policy decisions associated with remediation can be enforced through network equipment.
"The switch will be the policy-enforcement point," Crandell says. "And interoperability will mean you can use more than one vendor's products."
Several companies involved in this week's demonstration say they plan to include TNC functionality in future products.
Dan Ratner, director of product management at Meetinghouse, says the company expects to include TNC in its Aegis client and server authentication products by the fourth quarter. "It's an opportunity to extend the products so while we're doing the authentication we can also allow the integrity checking to occur," he says.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment