End-point security should address both hidden potential threats and actual
weaknesses at the end point. Many vendors offer products that resolve specific
end-point-related security issues and describe these as end-point security
solutions, but this is misleading.
For example, vendors offering products that control use of memory sticks,
digital cameras or other types of USB memory device are not offering end-point
security, but device control. Vendors offering application control products are
only covering one category of
security threat; even networks that lock down installations so that only
approved applications may be installed leave the end point open to other
security breaches.
Combining commodity security products, such as firewalls, anti-virus and
behavioural IDS/IPS, is not an end-point security solution. These products
should be obligatory for firms that want safe networks.
The layer of end-point security needs to cover processes, services and their
configurations and start-up commands, plus application and device control. Add a
form of change control that can identify a bypassed proxy or disabled group
policy, plus functionality that includes detecting multiple network connections
from a single PC and one is closer to a full view of an end point’s activity
while connected to the network.
A comprehensive solution also needs remediation capabilities to minimise the
impact on administrators managing the company end points and should address
misuse, misconfiguration and malicious activity. Most network access control
(NAC) products prescribe quarantining end points that do not conform to company
policy; they also suggest that each end point should exhibit a specific set of
security requirements and be without malware infections before admittance to the
network.
However, they are often performed only when the end point joins the network.
So, while NAC has its benefits and provides a barrier against infected end
points from joining a clean network, it is only one part of end-point security.
Unless a
NAC solution offers complete end-point security on a continuous basis, it must
be seen as a
product that merely complements end-point security.
Ari Tammam is channels vice president at
Promisec.
Achieve true end-point security
When it comes to network access control, are vendors offering products for comprehensive end-point security asks Ari Tammam
CRN, 06 Sep 2007
See also:
related articles
Massive UK and US botnet uncovered
Finjan finds Ukraine-controlled network of nearly two million compromised PCs 22 Apr 2009
Sunbelt targets malware with Vipre tool
Enterprise solution boasts faster processing and advanced detection techniques 04 Feb 2009
Microsoft responds to Windows 7 security gripe
UAC issue not considered a vulnerability 03 Feb 2009
latest news
Lenovo targets HP partner base
Vendor looks to expand reach and looks to rivals' channels to achieve its aims 03 Jul 2009
VMware rakes in 700 service provider partners
Virtualisation giant claims VSPP programme has gained significant traction in short space of time 03 Jul 2009
Compellent hits out at debate snub
Storage vendor writes open letter to prime minister in protest at being left out of £1bn stimulus debate 03 Jul 2009
Most read stories
advertisement
advertisement
CRNtv
CRN Fight Night 2009 bouts now LIVE!
It is time to relive the craziness that was CRN Fight Night 2009
In The Studio with CRN: Credit in the Channel
CRN Editor Sara Yirrell chats to two of the industry's credit stalwarts - Nitin Joshi and Eddie Pacey
events
CRN Channel Conference 2009
A one-day conference dedicated to the needs of businesses in the UK technology channel
advertisement
Advertisement
White papers
Top categories
- VPN, Extranet and Intranet Solutions
- WAN/ LAN Solutions
- Network Security
- Interoperability-Connectivity
- Grid/ Utility Computing
- Network Modeling and Analysis
- Availability, Performance and Problem Management
- Enterprise Systems Management
- Data Center Management
- Remote Access Technologies
- Wireless Technologies and Mobile Computing
Secondary navigation
reader comments