你在这里

Mirage 获得 Frost & Sullivan 评估为 2008 Best Entrepreneurial Company Award

网络接入控制(Network Access Control; NAC),在这短短几年,已经走过了漫长的道路。本文章收集相关的信息,用以探讨如何使用 NAC 来管理您所关切的安全议题。

  1. Frost & Sullivan's 2008 Best Entrepreneurial Company Award (最佳创业公司奖)

    Mirage 获得 Frost & Sullivan 评估为 2008 Best Entrepreneurial Company Award 最佳创业公司奖,是对 Mirage 创新的产品开发以及商业、营销策略的肯定。 Frost & Sullivan 也预估 Mirage 会持续成长,且业绩在 2-5 年内会达到 $530M 的规模。


  2. Taking a NAP with Microsoft

    Microsoft NAP (Network Access Protection) 未来一定会成为存取治理领域的主要组件,但它只能管理 Windows 环境的计算机,因此遇到非 Windows 的环境就会变成脆弱,而 NAP 目前也无法做到 post-admission 的政策管理。Mirage 发表一篇白皮书,名为: Microsoft NAP and Network Access Control - NAC Picks Up where NAP Leaves Off 谈到 Mirage 与 NAP 如何互补。摘要如下:

    • NAP 如何放入既有 NAC 的典范中
    • NAC 可以补足 NAP 哪些不足之处
    • 既有哪些存取管制的方法,可以协助落实 NAP

  3. 最近的资安趋势: NAC 成为一种代管服务

    近日发表的 Security Matters article 文章,指出当 NAC 成为一种代管服务,对组织来说可以兼顾提升安全架构与降低成本的好处。下面连结的 Network World 文章有 NAC 代管的市场规模分析信息。

    Mirage 近几年来有与下列公司结盟提供 NAC 代管服务,包含: AT&T, IBM/ISS 与地区性资安公司 Security On-Demand。一篇 Mirage CTO Grant Hartline 写的部落格文章, MSSP and NAC - True Love, 有提到为何许多客户会喜欢 NAC 代管的模式。


  4. 使用 NAC 来遵循 PCI 安全标准? 无价.

    要符合 PCI 标准是一件繁杂且遥远的路,特别是公司有提供让访客可以接入网络的环境更是重要。这篇 Network World 文章有指出 Evans 饭店如何用 Mirage's NAC 方案来保护其住户与公司网络安全,并且符合 PIC 的规范要求。

    如果需要了解 NAC 如何协助遵循 PCI 规范,一份白皮书可以参考。 NAC Payback Series: Payment Card Industry Compliance ,摘要如下:

    • 通常 PCI 稽核失败的原因
    • PCI 需求中与 NAC 有关的九点项目
    • Mirage NAC 方案的好处

  5. 面对 P2P 挑战

    点对点网络(P2P) 持续对大学、商业与政府造成困扰。大学部分,如 San Jacinto College, 有一份报导可参考: tackling P2P challenges with NAC. 香港政府有发表一篇 白皮书 指出 P2P 运作原理以及相关威胁与防御的最佳实务。

    这份 NAC Payback 系列的报告, Controlling Peer-to-Peer Applications, 包含如何侦测、警告甚至管理 P2P 网络:

    • 降低 IT 找出 P2P 并进行防御所花的时间
    • 符合稽核要求 (RIAA, IFPI, etc)
    • 降低 IT 成本与负担


原文如下:


Network Access Control (NAC) has certainly come a long way in just a few years. I've put together this newsletter with an interesting array of materials addressing how NAC can be used to manage your specific security concerns. I appreciate your feedback so please send me an email with questions, comments or ideas.

In This Issue:

===============================================================

  1. Frost & Sullivan's 2008 Best Entrepreneurial Company Award
  2. Taking a NAP with Microsoft
  3. The latest security trend: NAC as a managed service
  4. Using NAC for PCI security standards? Priceless.
  5. Peering at the P2P Challenge

===============================================================

Also, Mirage CTO Grant Hartline focuses on a major differentiation: NAP only works with managed devices in his blog entry titled: Microsoft Takes a NAP on Non-Managed Devices.

  1. Frost & Sullivan's 2008 Best Entrepreneurial Company Award

    Mirage has received Frost & Sullivan's 2008 Best Entrepreneurial Company Award. The award was presented in recognition of our innovative product development, strategic business development and focused market strategy. Frost & Sullivan expects Mirage's position of strength will continue in 2008 and beyond, predicting the company will continue to boost its share of a $530M market.


  2. Taking a NAP with Microsoft

    Microsoft NAP (Network Access Protection) will certainly become a pervasive part of access governance, but as with everything involving Microsoft, their "solution" focuses on Windows environments leaving the proverbial weakest link issues with non-Windows devices. It also provides no post-admission policy enforcement. Microsoft NAP and Network Access Control - NAC Picks Up where NAP Leaves Off white paper goes into greater depth on comparing Microsoft NAP and Mirage's NAC solution and how they can complement each other. Highlights from this paper include:

    • How NAP fits into the existing NAC paradigm
    • Where NAC fills in the NAP gaps
    • Access control technologies that complement NAP

  3. The latest security trend: NAC as a managed service

    This recently published Security Matters article highlights how NAC as a managed service is a way for organizations to benefit from a comprehensive security architecture with minimal drain on budget and IT staff. For general information on the projected size of the managed services market, this Network World article has recently updated numbers.

    Mirage has been partnering, for a few years, to supply network access control (NAC) technology to multiple partners who offer managed services - including AT&T, IBM/ISS and regional companies such as Security On-Demand. In his blog entry titled MSSP and NAC - True Love, Mirage CTO Grant Hartline writes about how managed NAC is a natural extension for companies of any size and/or industry who already leverage other managed services.


  4. Using NAC for PCI security standards? Priceless.

    Implementing PCI standards is multi-faceted and has far reaching network implications, especially when the ability to offer guest networking is important to your organization. For instance, this Network World article highlights how Evans Hotels is using Mirage's NAC solution to protect their guest and corporate networks and still comply with PCI requirements.

    For greater understanding of how NAC can support your PCI compliance requirements, NAC Payback Series: Payment Card Industry Compliance provides more details including:

    • Common reasons for failed PCI audits
    • Nine specific PCI requirements addressed by NAC
    • Mirage NAC solution benefits

  5. Peering at the P2P Challenge

    Peer-to-peer networking (P2P) continues to be a challenge with universities, businesses and governments. Colleges, such as San Jacinto College, are tackling P2P challenges with NAC. The government of Hong Kong released a white paper that explains how P2P works, why it poses a threat and best practices.

    This NAC Payback series paper, Controlling Peer-to-Peer Applications, covers how to detect, alert on, and govern P2P usage while:

    • Eliminating IT time spent locating offenders
    • Meeting audit requirements (RIAA, IFPI, etc)
    • Reducing IT costs and burden