Access Control 2.0 - Coordinated Security

by Juniper Employee on 11-18-2008 10:19 AM

There are an increasing number of access control products in the typical corporate network.  This includes SSL VPN products for remote access control, and Network Access Control (NAC) for local access control.  The mission of these offerings is to provide access to the network only for authenticated users on secure machines.  At the same time, security products ranging from firewalls to IPS/IDP systems are monitoring the traffic on these same networks, ensuring that network assets are protected from unwanted behavior.  Future security solutions will begin to blend these concepts of access control with end user behavior.  These offerings will leverage not only user identity and posture assessment, but actual traffic on the network, to ensure that authorized users are staying within the confines of corporate security policies.  Coordination of this sort will allow these systems to react dynamically to user behavior.  For example, if an authorized user launched an attack against the corporate data center, an IPS might drop that traffic, providing the protection it was design for.  At the same time, it would feed information related to the attack into the corporate access control infrastructure, so that action can be taken on that end user's session - quarantine, or session termination, for example. The result is end-to-end threat control and prevention - coordination of network and security elements that ensures that all of the relevant information that these devices are collecting can be used to make the best possible decisions on user access.  With this type of system, the days of silo'd security devices are numbered.

Labels:
0
About the Author
  • Michael Rothschild is the Senior Manager of Solutions Marketing at Juniper Networks, responsible for security solutions for the enterprise. When he’s not busy helping customer’s understand the importance of a solutions focus to address the new security threats affecting business, Michael is a professor of marketing and volunteers as a paramedic.
  • Krishna is a Distinguished Engineer in the Service Layer Technologies group at Juniper. He's currently working on DPI technology initiatives in products targeted at service providers and enterprise markets. Krishna has 19 years of experience in data networking involving Ethernet, ATM, IP, Switching and Security technologies. He has authored 10 patents in the areas of switching, security and QoS. He was actively involved in the IEEE 802.1 and ATM Forum standards committees. Prior to Juniper, he was the co-founder and System Architect at Top Layer Networks where he played a pivotal role in bringing multiple products to the market. He has also held senior engineering roles at Digital Equipment Corporation and Fore Systems.
  • As a Solutions Architect and Leader of Enterprise Solutions Engineering, Lior Cohen is responsible for developing reference architectures and best practices utilizing Juniper products. He has been designing and building enterprise networks and security solutions for over a decade and has helped several Fortune 500 companies develop risk mitigation strategies and implement information security technologies. Prior to joining Juniper, Lior was Chief Technology Officer for a privately held information security consulting firm where he led multi-national consulting and auditing engagements for the financial services and real estate sectors. He also filled various roles at Check Point Software, including leading the company’s Solutions Center. He holds a Bachelor’s degree in Economics and Information Systems from Tel Aviv University.
  • Rich Campagna, Senior Product Manager in the Access Business Group is responsible for business strategies, product development, partner interactions and customer engagements to help drive the growth of Juniper Networks' Unified Access Control and SA Series SSL VPN solutions. Rich is also an avid snowboarder and motorcyclist (not at the same time).
About Technically Secure
Welcome to Technically Secure, the Juniper Networks blog dedicated to trends and innovation in the world of IT risk management and security. Here we'll offer technical perspectives on network security, covering things happening within Juniper Networks as well as issues across the industry as a whole. Our mission is simple: explore ideas, share information, and provide insight that will help you take a proactive stance on threat and risk mitigation.

Our primary objective is to explore technical IT security issues as business and technology challenges that could compromise the effectiveness of enterprises and service providers. We'll share our strategies for staying ahead of today’s rapidly changing threat landscape and focus in particular on innovation in network security technologies.

We’ve assembled a great team of bloggers to kick off these conversations with you, but we encourage your participation. If there's a topic that you'd like us to cover, let us know by commenting on the blog. We’re not just talking — we’re listening.

Our Bloggers Krishna Narayanaswamy,
Distinguished Engineer

Krishna is a Distinguished Engineer in the Service Layer Technologies group at Juniper. He is currently working on DPI technology initiatives in products targeted at service providers and enterprise markets.

Krishna has 19 years of experience in data networking involving Ethernet, ATM, IP, Switching and Security technologies. He has authored 10 patents in the areas of switching, security and QoS. He was actively involved in the IEEE 802.1 and ATM Forum standards committees.

Prior to Juniper, he was the co-founder and System Architect at Top Layer Networks where he played a pivotal role in bringing multiple products to the market. He has also held senior engineering roles at Digital Equipment Corporation and Fore Systems.

Michael Rothschild,
Senior Manager
Solutions Marketing

Michael Rothschild is the senior manager of solutions marketing at Juniper Networks, responsible for security solutions for the enterprise.

When he’s not busy helping customer’s understand the importance of a solutions focus to address the new security threats affecting business, Michael is a professor of marketing and volunteers as a paramedic.

Lior Cohen,
Solutions Architect

As a Solutions Architect and Leader of Enterprise Solutions Engineering at Juniper Networks, Lior Cohen is responsible for developing reference architectures and best practices utilizing Juniper products. In his free time, Cohen enjoys mountain biking and spending time with his children.

Rich Campagna,
Senior Product Manager

Rich Campagna,
Senior Product Manager in the Access Business Group at Juniper Networks is responsible for driving the business strategies, product development, partner interactions and customer engagements to help drive the growth of Juniper Networks' Unified Access Control and Secure Access SSL VPN solutions. Rich is also an avid snowboarder and motorcyclist (not at the same time).

Labels
Blogroll