"Just deploying NAC as an endpoint security solution wonít guarantee long-term success; operations and security teams will still need to overcome NACís limitations. The next generation of client and network security will encompass multiple solutions, which we dub proactive endpoint risk management [PERM], defined as policy-based software technologies that manage risk by integrating endpoint security, access control, identity and configuration management.
Senior Analyst, Enterprise Networking, Forrester Research Inc.
Identity-based Policy Enforcement [requires registration]
: The whitepaper focuses on the role of identity as a foundation for security policies, and the need to enforce identity-based policies in the network. The ROI advantages of such an approach are shown in the context of a policy lifecycle.
Comparing 802.1X to the Nevis LAN Security Approach [requires registration]
: Another in the "Best Practices..." whitepaper series, this focuses on the 802.1x standard for authentication and access control and compares it to the relevant functionality provided by the Nevis solution. While 802.1x has grown to be ubiquitous, it is still relatively immature and may not provide all the policy enforcement features commonly required in most organizations.
NAC - Beyond Endpoint Checking [requires registration]
: Proper access policy enforcement goes well beyond validating the endpoints accessing the network. Learn what other security services are required for a complete solution as well as the Nevis approach to implementing them.
Tech Brief: Application Recognition [requires registration]
: Application recognition is an important component of threat detection. Malware can easily propagate over peer-to-peer protocols. Other application protocols, such as instant messaging represent a compliance challenge for organizations and need to be tightly controlled. A complete LAN security solution needs to include this capability, and the performance of this feature turns out to be a critical factor in meeting customer requirements, and improving network quality of service.