- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
Senior Editor Tim Greene clarifies issues surrounding the evolving NAC security architecture.
Fiberlink has added features to its existing remote-access security service to create an offering it says supports NAC for mobile users.
Called Mobile NAC, the service includes existing features of its Extend 360 platform, such as quarantining devices that flunk security policy checks as well as remediating those that fail.
Extend 360 is a client-server platform. The client, which monitors the host machine whenever it is turned on regardless of whether it is connected to the Internet, reports in to the server.
Depending on what it reports and what policies are in place, the server can require the remote machine to update software, turn on applications that might be turned off and restrict what IP addresses the machine can reach.
Mobile NAC includes the ability to restrict use of USB devices to remove data from mobile devices, helping to protect data.
The key difference between Mobile NAC and conventional NAC schemes is that the software does its endpoint scanning continuously, whether or not the device is attempting to connect with the corporate network.
This means that when it does connect, the scan and any remediation that might need to be done is already completed.
Like any endpoint checking scheme, Mobile NAC doesn’t address the possibility that the device could still be infected, despite being properly configured to comply with security policies.
But it does offer the same assurances mainstream NAC endpoint checking does, which is that it reduces the likelihood that the device will do harm once allowed onto the corporate network.
Tim Greene is senior editor at Network World.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (1)
Mobile NACBy Anonymous on April 13, 2007, 12:43 amvery goood article on mobile nac, very useful on security point of view. but can i get keylogger software for mobile (based on java/ symbian file format)
Reply | Read entire comment
View all comments