February 15, 2005 (HOSTSEARCH.COM) InfoExpress today announced it will present the first public demonstration of its CyberGatekeeper(R) policy-based network access control solution at the upcoming RSA Conference 2005 in San Francisco.
The demonstration will illustrate how CyberGatekeeper's NAC integration extends a NAC-enabled infrastructure with extensive policy management and remediation features, fulfilling the promise of NAC by providing the ability to audit any endpoint's configuration, application and custom software, and quarantine and remediate non-compliant endpoints.
Network Admission Control (NAC) is a Cisco Systems-sponsored industry initiative that uses the network infrastructure to enforce security policy compliance on all devices seeking to access network computing resources, thereby limiting damage from viruses and worms. Using NAC, organizations can provide network access to endpoint devices such as PCs, PDAs, and servers that are verified to be fully compliant with established security policy. NAC can also identify noncompliant devices and deny them access, place them in a quarantined area, or give them restricted access to computing resources.
The CyberGatekeeper server will be installed on a LAN along with a NAC-enabled Cisco router, a Cisco Secure Access Control Server (ACS) and an endpoint computer running the Cisco Trusted Agent, a key component of the NAC program and the CyberGatekeeper agent. A non-compliant process will be run on the endpoint machine and detected by CyberGatekeeper, which will display a warning message on the endpoint machine. If the non-compliant process isn't terminated within the specified time, the CyberGatekeeper will notify the Cisco ACS of the non-compliance, and the ACS will instruct the router to reroute the endpoint machine from the production network to a quarantine network.
"InfoExpress is working closely with the NAC program to integrate its CyberGatekeeper network access control solution in the very near future to enable customers deploying NAC in their network to benefit from CyberGatekeeper's broad policy management, distribution and inspection infrastructure," said Stacey Lum, CEO of InfoExpress. "CyberGatekeeper enables these organizations to secure not only the NAC-enabled portions of their network, but all of their network infrastructure, providing a single management interface to protect the corporate network from unpatched, infected or otherwise undesirable endpoint behavior across a broad range of remote access, dial-up, VPN, LAN, WLAN and other infrastructure."
CyberGatekeeper hardens existing networks by assessing endpoint compliance to policies, granting network access to compliant systems and helping to keep unsafe systems out. CyberGatekeeper scans and audits all endpoints against the enterprise security policy. Non-compliant systems are automatically quarantined until remediation brings them into compliance. Unlike endpoint enforcement solutions, CyberGatekeeper restricts access for all non-compliant systems, even those without the agent or client software installed.