- Kindle back orders stretch 3 months at Amazon
- Cisco shutting down between holidays
- Smartphone smackdown: Storm vs. iPhone
- 12 myths about how the Internet works
- Google layoffs: 10,000 jobs being cut
NEW YORK - Hot topics such as network access control and convergence of cellular and Wi-Fi voice lured IT decision-makers to Interop last week, where they got to see the latest advances but also were warned that technology shortcomings mean they should proceed slowly with rollouts.
For the second year in a row, Interop took place in New York as a complement to the main Las Vegas show held in the spring. Show planners were hoping for 7,000 attendees, but had no final count last week. CA, Juniper and Symantec executives delivered keynote addresses, and more than 150 vendors exhibited — though big names such as Cisco and IBM did not.
Getting plenty of attention at the show was NAC, which involves checking devices for compliance with security policies before being granted network access. At issue is how different NAC approaches will be integrated and how long it will take for standards, such as those being developed by the Trusted Networking Group (TCG), to gel.
“It will be a gradual process over time," said TCG supporter Steve Hannah, a distinguished engineer with Juniper who participated on a NAC panel at the show.
A representative on the panel from Cisco, which promotes its own NAC architecture and does not work with TCG, said even over time the variety of corporate networks will preclude a simple solution for all cases. “You’re always going to have so many corner cases. You’ll never have a magic [endpoint-checking] agent that tells you everything," said Thomas Howard, security solutions engineer for Cisco.
Customers may need to rein in their enthusiasm for NAC and perform a basic evaluation of whether they need it, experts said. “People don’t even know what they want. It’s really scary," Howard said.
Employees working in business functions at corporations need to define how much access groups of employees need so IT staff can write the appropriate policies, said Denzil Wessels, technical marketing manager for Juniper. “Get people in the right groups. You need business maturity to do this," he said.
Panelist David Greenstein, chief architect for StillSecure, agreed that such policies should be created at the outset of designing an NAC infrastructure. “You need to say what your policy is, and this usually waits until the end," he said. Often customers wind up identifying their greatest risk and protecting against that without creating a broader hierarchy of threats, he said.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment