Advertisement
Promo

Security threats Toolkit

Cisco initiative tackles mobile working security threat

Published: 19 Nov 2003 12:50 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Cisco Systems has teamed up with three top antivirus companies in a security initiative intended to ban insecure mobile devices from corporate networks.

The initiative, dubbed the Network Admission Control programme, would allow companies to set their network devices to refuse connections from any mobile PCs or devices that fail to meet corporate security policies, such as not having the latest software patches and antivirus updates. Antivirus companies Network Associates, Symantec and Trend Micro joined Cisco in making the announcement on Tuesday.

The plan is meant to combat one of the common weaknesses of company networks: workers who log on from outside a company using insecure PCs or who bring those computers inside the company and connect to the network.

"Currently, no check is made to see if the PC is compliant with corporate security policies," Charlie Giancarlo, senior vice president of product development for Cisco, said on a conference call on Tuesday. "The user might become infected at home or through a hotel Internet connection...[and] immediately spread a worm throughout a corporate networks."

The move by the companies is a reaction to recent computer worms and virus epidemics that have managed to spread into businesses due in large part to the insecure PCs mobile workers use. Both the Slammer worm in January and the MSBlast worm in August were able to get past corporate defences by hitching rides on the laptops of mobile workers who were lax with security.

"The explosion of wireless, mobile devices and pagers has made the corporation much more vulnerable to attack through the devices," said George Samenuk, CEO of Network Associates.

Other companies have reacted to the problems the worms have highlighted. Microsoft announced in October that it would augment its focus on securing its software through patching, because the earlier system of updates hasn't been able to stem the epidemics. Other companies, including Internet service providers, have blocked certain types of traffic for weeks at a time to stop threats.

Putting agents in place
Cisco's Network Admission Control programme would enable companies to install on every PC and mobile device a client, called the Cisco Trust Agent, which could attest to certain levels of security, such as whether the device has been recently patched or has the latest virus recognition files. Antivirus software makers would modify their products to provide information to the software that could be used by companies to determine how secure the PC might be.

Giancarlo stressed that completely locking out mobile users is not an answer. "Clearly, the solution is not to eliminate one of the most important aspects of these devices: their mobility," he said.

The secure connections that allow employees to connect to the internal corporate network from home, virtual private networks, are also seen as a major threat to businesses' security.

Cisco has already focused on delivering such connectivity in its products. Earlier this month, the company announced an upgrade to the Cisco VPN 3000 Concentrator to add secure network functionality, dubbed WebVPN, based on the Secure Sockets Layer protocol browsers widely use.

Cisco's concentrators are network devices that act as central connection points for virtual private networks and, as such, are an ideal place to put in additional network defences.

However, the technology won't work unless security software can tell the Trusted Agent application the current state of security on the computer or mobile device.

"This important problem can't be addressed individually," said John Thompson, CEO of Symantec. "Collaboration is a must."

The technology might also spur sales of PCs and devices that use trusted-computing hardware -- controversial technology that uses encryption, special memory and security software to lock away secrets on a PC from prying eyes. Adding further protections to the system that attests to the security of a computer owned by a company is a reasonable use of the system, said Bob Gleichauf, chief technology officer for the Network Admission Control program at Cisco.

"We need a trust boundary between the network and these devices, and the system needs hardware and software to do that," he said.

Cisco plans to introduce the technology in the middle of 2004.

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
47 out of 86 people found this useful


In association with Network Liberation Movement

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats



Company/Topic Alerts

Create a new alert from the list below:






Related Jobs

Security Analyst - CISSP, IDS / IPS

IT Security Manager

Systems Engineer (Linux / Unix, Windows, Cisco)

Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

DNA details of innocent will be kept f...

The government has announced that it plans to keep innocent people's DNA details for up to six years. In response to a consultation it launched last December, the government said... More

5 comments

Motorola Droid Drops Today: Happy Droi...

Motorola Droid Drops Today: Happy Droid Day America! Author: Eric Everson, Mobile Security Expert If you’re wondering what all of the buzz is about with words like Droid and Android... More

Post a comment

Mobile Security Profile: BlackBerry St...

Mobile Security Profile: BlackBerry Storm2 Author: Eric Everson BlackBerry handsets are a staple of office culture; from syncing calendars to sharing business-related data,... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters