Tim Greene from Network World has an article up highlighting the Insightix NAC solution. Insightix is the company co-founded by Ofir Arkin, who got some notoriety by showing how NAC could be “bypassed.” I wrote about his presentation a while back so I won’t reiterate any of that. But I found this snippet from Greene’s article interesting:
Insightix NAC software can block unauthorized devices from network access via address resolution protocol (ARP) spoofing, which tells the device it is ineligible to send traffic to the network. Alternatively, it can block access to switch ports using SNMP commands to switches that deny access.
Let’s see … the co-founder of a NAC company attacks existing NAC approaches and releases his own approach based on ARP and SNMP. I’ll leave any jokes here as an exercise for the reader. If you want a hint, check out Alan Shimel’s analysis.
Technorati Tags: NAC