Network Control
Network admission report refers to Network Access Control and restricts access to the network which is based on security posture. Network device is able to force machine or user authentification configured for NAC. Guest access can be granted to a quarantine area for meditation of any problems caused by failure. A typical WiFi connection is a good example of NAC. User must present credentials before granted access to the network.
Initial phase Network Admission Control enables Cisco routers for enforcing priveleges in connecting to the net. This access can be on the basis of information about the device for example its current antivirus state. It includes information such as version of antivirus software, virus of scan engine.
Network admission system allows noncompliant devices to be denied in access.
Primary component of the Cisco NAC program is Cisco Trust Agent, it resides on endpoint system, communicates with its routers on the net. Cisco Trust Agent collects security information. The information is relayed to Cisco Secure Access Server. The information then goes to ACS here all decisions are made. ACS directs router in performing enforcement.
List of possible attacks is big enough. It several strategies are known for addressing security concerns: encryption for reference monitors, integrity, confidentiality, access control, this is useful in security engineering. Some sections provide explanations for important controls among them one can meet intrusion detection systems, firewalls, overlapping controls for defense.
If you want to have a full control of your network activity, it’s better to have a software to secure Internet activity.
Security threat analysis consists of three major steps:
- scrutinization of all the parts
- considering possible damage for confidentiality
- hypothesize the attacks causing this damage
Such functional steps are typical for users of network. If we compare communication of two persons we will see basic types of communication in the net : read communications, modify communications, forge communications, inhibit communications.
All these can cause the consequences in:
-modifying programs or data at remote hosts
-accessing programs or data at remote hosts
-blocking selected traffic
-blocking all traffic
-modifying data in transit
-impersonating a user
-running a program at a remote host
-inserting communications
-intercepting data in traffic
-inserting a repeat of a previous communication
Tags: network admission, network control, security