- Chinese Internet censorship: An inside look
- Desktops of the future here today
- What network CEOs really make
- DoD sold counterfeit network gear
- Sci-Fi's goofiest gadgets and technology
Crackin' the Kraken bot. Listen now!
Wireless dangers at airports. Listen now!
The Payment Card Industry Data Security Standard (PCI DSS) is a set of industry regulations imposed by the major credit card companies to ensure the safety, security, and integrity of cardholder data. Any business that processes, stores, and transmits cardholder account data must comply with this complex new standard, and must be able to demonstrate that compliance through automated and manual audits of their systems. This white paper looks at the key challenges and requirements of PCI DSS as it relates to Microsoft Windows and Active Directory, and shows you how a third-party software solution can help with PCI compliance.
Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.
There are many compelling reasons for virtualizing Windows and Linux applications. Virtualization improves server utilization by allowing you to run multiple workloads on a single physical server. It reduces the number of physical servers you have to maintain, while allowing you to use less physical space and power while still improving scalability. All of these capabilities translate directly into lower costs, less complexity, and greater flexibility in your mixed IT environment. Register below to learn more and be entered to win an Archos 605 Portable Media Player.
Enterasys Sentinel is now known as Enterasys NAC - see http://www.enterasys.com/products/advanced-security-apps/enterasys-network-access.aspx...- Anonymous
StillSecure has expanded its NAC offering to include its intrusion-detection and -prevention gear.
With the addition of StrataGuard IDS/IPS technology to the company’s Safe Access NAC offering, the product now supports both pre-admission and post-admission NAC.
Pre-admission NAC is the checking of endpoints for adequate security posture before they gain network access. Post-admission NAC is making sure devices behave in accordance with security policies after they are admitted.
It’s important to note the distinction and the value of each. While pre-admission NAC was initially devised as a way to protect against viruses and Trojans by ensuring computer defenses are up to snuff, it doesn’t guarantee that a machine is not infected. For instance, a new virus for which no signature has been found could be installed on a PC that also meets pre-admission requirements.
Post-admission NAC can backstop pre-admission NAC in these cases. When the virus goes to work within a network protected this way, the NAC gear will discover suspect behavior and isolate the offending machine until it can be cleaned or until its suspicious activity is found to be legitimate.
In combination, these two forms of NAC are not foolproof, but they are formidable and fit well into anybody’s multilayered security scheme.
StillSecure gives this combination its own name - Complete NAC - but the idea isn’t unique to StillSecure. In fact most NAC vendors are leaning in this direction, either by developing their own technology or teaming up with other vendors, and as a customer, it’s important to look for both.