You let in who you want to keep out?

by Ivan Pintori, posted on 2007-01-13 02:17:43 under Network

NAC, Network Access Control, is a good thing. While talking with auditors they are all excited because we are moving back toward a culture of controlling our networks. But the NAC by Cisco is it really the right answer? A hub, access to a PC, and there you go: you have a stray device attached to your network, and who needs a dhcp?

Still this may be the right way to better controlling our internal boundaries. But for now leave the security functionality to the univerisites: it still need to be heavily tested.