Network Access Control technologies

Network access control is a crucial part of enterprise security. Get advice on how to achieve NAC and remote access control with the latest security technology and services. In this resource guide you will get tips on using endpoint software, DMZ and VLAN security and remote access management.

March 22, 2017 22 Mar'17
HTTPS interception, middlebox models under fire

HTTPS interception in security products and services may be reducing security rather than improving it, according to US-CERT, which puts middleboxes in a precarious position.
February 01, 2017 01 Feb'17
Tatu Ylonen explains the risks of IoT SSH implementations

SSH creator Tatu Ylonen explains why IoT SSH implementations can be dangerous and presents real-world examples of threat actors abusing SSH keys to attack enterprises.
January 27, 2017 27 Jan'17
How improper SSH key management is putting enterprises at risk

In part two of his interview with SearchSecurity, SSH creator Tatu Ylonen explains why proper SSH key management is crucial and how attackers can use lost or exposed keys.
August 31, 2016 31 Aug'16
Windows 10 Anniversary update adds headaches for antivirus vendors

The antivirus industry has been under fire lately, and Microsoft's Windows 10 Anniversary update has added new troubles for antivirus software vendors.

Bring yourself up to speed with our introductory content

two-factor authentication (2FA)

Two-factor authentication (2FA), sometimes referred to as two-step verification or dual factor authentication, is a security process in which the user provides two different authentication factors to verify themselves to better protect both the ... Continue Reading
DMZ (networking)

In computer networks, a DMZ (demilitarized zone), also sometimes known as a perimeter network or a screened subnetwork, is a physical or logical subnet that separates an internal local area network (LAN) from other untrusted networks, usually the ... Continue Reading
Five questions to ask before purchasing NAC products

Organizations are recognizing the need for network access control systems, but it is important to evaluate and perform research before you invest in enterprise NAC products. Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Network reconnaissance: How to use SI6 Networks' IPv6 toolkit

SI6 Networks' IPv6 toolkit can do network reconnaissance using search engines and the Certificate Transparency framework. Learn how to use IPv6 toolkits from expert Fernando Gont. Continue Reading
To prevent a firewall breach, adapt to the new environment

Data center operations have changed, making firewalls potentially weaker and breaches more likely. Next-gen firewalls, though, are better adapted to today’s DC environment. Continue Reading
Three reasons to implement an NAC system

The growth in devices on the network has heightened the need for network access control products. This article presents scenarios where an enterprise might need an NAC system. Continue Reading

Learn to apply best practices and optimize your operations.

My Cloud EX2: How can this device expose unauthorized data?

SpiderLabs discovered My Cloud EX2 backup devices exposing unauthorized HTTP requests. Join Judith Myerson as she explains how this happens, as well as the impact on DLNA devices. Continue Reading
Bouncy Castle keystore: How are files vulnerable to brute force?

BKS files are being exposed to hash collisions, enabling hackers to use brute force attacks against C# and Java applications. Learn how this occurs and possible solutions with Judith Myerson. Continue Reading
Why a zero-trust network with authentication is essential

Zero-trust networks are often deemed compromised and untrusted, making authentication variables essential to security. Expert Matthew Pascucci explains a zero-trust security model. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Is upgrading to SNMP v3 enough to secure network devices?

Using SNMP v3 is a good first step, but it's not enough to prevent attackers from accessing a network through an SNMP-enabled device. Expert Judith Myerson explains what else to do. Continue Reading
Why authorization management is paramount for cybersecurity readiness

After enterprise identities are authenticated, an authorization management system should monitor how resources are being used. Expert Peter Sullivan explains how it can work. Continue Reading
How does the mandatory access control model and application sandboxing differ?

Mandatory access control and application sandboxing both offer layers of security through controlling access to system resources. Expert Michael Cobb explains what sets each apart. Continue Reading