Which is a more secure data access technology: SPAN or TAP?

When monitoring traffic on a network, which is the best tool to use? Network security expert Mike Chapple gives advice.

Mike Chapple

University of Notre Dame
Published: 08 Apr 2008

What is a more secure data access technology: SPAN or TAP?

First, let's take a brief detour and explain these two technologies. Both are options for monitoring traffic on a network. Test access ports, or TAPs, are devices that are placed on a network segment, and they allow a passive device to connect to it. The TAP contains three ports: two for traffic and one for monitoring. When network data arrives on either of the traffic ports, the TAP provides a copy of it to both the other traffic port and the monitoring port. The arrangement allows users to connect a network sniffer or other monitoring device to the network, but without the downtime associated with creating an inline connection for it.

Switched port analyzer (SPAN) ports provide similar functionality, but occur at the switch and do not require additional...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

hardware. The network administrator simply configures one port on the switch to serve as a SPAN port, and the switch then delivers copies of all traffic from any port on the switch to the SPAN port, allowing for the connection of a monitoring device. From a security perspective, there's not much difference between a TAP and a SPAN port. Both are useful for monitoring network traffic (albeit at different points in the network) and provide the same basic functionality.

More information:

Lock down IM by monitoring traffic over the network.
Is it possible to monitor and block port-scanning activity? Learn more.

Dig Deeper on Network device security: Appliances, firewalls and switches

All
News
Get Started
Evaluate
Manage
Problem Solve

Related Q&A from Mike Chapple

How to prevent DoS attacks in the enterprise

It's not possible to eradicate the risk of DoS attacks, but there are steps infosec pros can take to reduce their impact. Mike Chapple shares ... Continue Reading

How should HIPAA covered entities respond to healthcare ransomware?

The HHS OCR ruled that healthcare ransomware attacks are HIPAA violations, so these covered entities need to react according to the HHS's guidance. ... Continue Reading

Should healthcare organizations follow the NIST guidelines for HIPAA?

HIPAA regulations incorporate NIST guidelines and standards, so do healthcare organizations need to be compliant with both? Expert Mike Chapple ... Continue Reading

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Information Security experts

View all Information Security questions and answers

SearchCloudSecurity

How to build and maintain a multi-cloud security strategy

When using multiple cloud service providers, it's critical to consider your enterprise's cloud scope and the specifics of each ...

Why CASB tools are crucial to your cloud security

CASB tools have gained traction as cloud security becomes more important. Among other features, a cloud security access broker ...

Complexity requires new cloud-based patch management strategies

Patch management for cloud creates new challenges than traditional in-house programs. Expert Dave Shackleford presents patch ...

SearchNetworking

The evolution of SDN and its role in networking

Has SDN run its course, or has the architecture simply evolved? In many current products, data centers and cloud environments, ...

Wi-Fi Certified 6 launches new era for wireless connectivity

The Wi-Fi 6 wireless standard is now ready for deployment, thanks to the debut of a certification effort that helps guarantee ...

Try a CCNA 200-301 practice quiz from the official cert guide

This practice quiz provides a sneak peek into the new 'CCNA 200-301 Official Cert Guide, Volume 1,' which reflects Cisco's CCNA ...

SearchCIO

Home Depot CIO promotes in-house tech boot camp

For companies having trouble finding qualified IT professionals to hire, the solution may be closer than you think. Just ask Home...

CIO presentation to the board of directors: Candid tips from CIOs

Board presentations can be scary. The good news is CIOs can't go too wrong in a climate where boards are desperate to learn about...

Edge computing use cases must be driven by business value

For Schneider Electric and many other large enterprises that take a look at edge computing projects, the main criterion for ...

SearchEnterpriseDesktop

DaaS may encourage organizations to adopt Macs and Chromebooks

New options for delivering remote Windows apps in the cloud, combined with the maturity of SaaS apps, Chromebooks and Mac ...

Zoho adds new Zoho One features, management application

Zoho One customers can now make phone calls using Zoho's telephony platform, extend provisioning through custom apps and use the ...

4 steps to check application compatibility with Windows 10

Before a Windows 10 migration, IT admins should make sure all applications are compatible with the new OS. Here are four steps to...

SearchCloudComputing

Top 5 nontechnical skills for cloud computing success

Companies that move to the cloud need a staff with a strong technical background, but soft skills are important too. Review five ...

Build cloud economics expertise in-house

Cloud bills shouldn't be filled with surprises, but unexpected costs are all too common. Ensure your staff can handle cost ...

Early Oracle Cloud Infrastructure customers take its measure

Oracle Cloud Infrastructure is seeing early adoption from a diverse array of customers, although OCI's market share remains ...

ComputerWeekly.com

Defra chief digital information officer steps down

John Seglias is leaving the department most impacted by Brexit to join National Grid, after four years in the civil service

Government insists 'nothing sinister' about web user data gathering

Government Digital Service responds to allegations that personal data gathered through Gov.uk portal could be used to target ...

EBA outsourcing guidelines: What banks, fintechs and cloud providers need to know

The regulatory landscape for financial services firms and their use of outsourcing will undergo a refresh later this month with ...

Dig Deeper on Network device security: Appliances, firewalls and switches

Related Q&A from Mike Chapple

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.