Access Control

Posted by The Beyand | 4:46 AM | 0 comments »

The ReefEdge Connect System enables a powerful multi-tier access control
mechanism through its distributed firewall implementation. Users are associated with
security classes, which determine the accessible network hosts, ports, and
applications. The Connect System’s access control mechanism delivers to each user
a personalized view of the network. Even though users share a common wireless
LAN infrastructure, they are treated as individuals with individual user privileges.
For example, an enterprise might define security classes for employees, guests,
vendors, contractors, and other user groups. IT managers can safely offer Internet
access to guests and limited network access to other temporary workers. Many
network environments use VLANs to establish so-called “Chinese Walls” separating
different employee groups, but it is impractical to deploy physically separate wireless
infrastructure to duplicate these policies for mobile users; however, the ReefEdge
Connect System can enforce individualized network access policies, delivering the
VLAN experience over the Wireless LAN.
ReefEdge Connect System access control can even be enforced on a location-
specific basis, enabling wireless security to match the physical security of the
enterprise premises. For example, within the reception area, guests might receive
limited Internet access, but within conference rooms, guests might receive full access
to the Internet and to various meeting and collaboration tools.
ReefEdge takes access control one-step further, by providing a layer of security for
TM
the mobile devices themselves. The patent-pending Mobile Masquerading
technology deployed in the ReefEdge Connect System gives the IT manager control
over whether servers may run on mobile clients, as well as who may initiate
connections to those mobile servers.
Beyond controlling the flow of network traffic, the ReefEdge Connect System is part
of a comprehensive access control solution. Solution providers can integrate the
wireless LAN with enterprise security systems providing auditing, logging, and
intrusion detection support. Through its partnership with Xcellenet and its Afaria
product line, ReefEdge enables solutions that fully manage wireless LAN clients. For
example, the system can enforce login scripts or applications that must be executed
before a user is permitted to access the wireless LAN. These scripts might ensure
delivery of upgraded software to the mobile client, execution of appropriate anti-virus
software, or consistency checks of the client configuration.

0 comments

Post a Comment

Subscribe to: Post Comments (Atom)