NAC implementation slows as networking budgets grow

By Kate Dostart, Associate Editor 20 Dec 2006 | SearchNetworking.com

Network security news, advice and technical information Digg This!     StumbleUpon     Del.icio.us

Following up on a previous study done in spring 2006, TheInfoPro returned to interview a number of the same enterprises to see whether NAC implementation or policymaking had occurred in the four to five months that had elapsed. According to Bill Trussell, managing director of TheInfoPro's Networking sector, the spring findings indicated that at least a third of enterprises interviewed had already implemented NAC, with another 42% rating implementation a high priority within the next 12 months.

The follow-up visits revealed, however, that expected implementation had dropped by 19%, with 37% of enterprises actively considering an NAC policy and an equal number believing it unlikely that they would implement within the next year. Those findings are based on 126 hour-long interviews with pre-screened networking professionals from Fortune 1000 and midsized enterprises.

For more on NAC Check out our special NAC report Read about Juniper's Unified Access Control

Common responses explaining the decreased interest in NAC indicated that managers found the technology immature -- not meeting expectations, creating unacceptable lengths of wait-time, and causing a loss of productivity. As a result, a number of enterprises indicated that they intend to shelve NAC for another year or two and wait for the technology to mature.

Managers who have already implemented NAC also indicated that lack of product interoperability could be a major deterrent as well, specifically for networks using multiple vendors. The portability of many standard computing devices also raises concerns for network administrators because unprotected devices are finding ways onto previously well-secured networks, through either employee use of work laptops on home networks or remote accessing of an enterprise's network from foreign computers.

Interest in NAC remains strong, despite the tailing off of actual implementation, Trussell said. Small and midsized businesses to large enterprises all said they plan to keep an eye on the technology designed to address a number of security issues, targeting in particular the introduction of rogue devices to corporate networks.

The results of the Wave 2 Networking study are intended to give network administrators a benchmark perspective, Trussell said, helping place their current NAC policy and other networking issues against those of other enterprises. The study is also designed to share what administrators of NAC-secured networks have learned from the process and better separate hype from reality.

Trussell cautioned potential implementers to individually weigh the benefits and disadvantages of being late to the NAC table versus being an early adopter.

Tags: Network Access Control,  Network Security Best Practices and Products,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Network Access Control Network security risks multiply when enterprises begin outsourcing Dynamic policy ensures faster, safer network for school district NAC appliance vendors: Can you depend on them? NAC integration at the endpoint Extending NAC enforcement to network security devices Integrating NAC with network security tools Network access control market crushed by economy, but future is bright Joel Snyder discusses Network Access Control Day at Interop Las Vegas Maturing NAC market gets its first Gartner Magic Quadrant Poor data-loss prevention practices almost cost Intel a billion Network Security Best Practices and Products Enterprises demand next-generation firewalls with IPS, app visibility Preventing hacker attacks with network behavior analysis IPS Is there a way to trace my stolen laptop computer? Integrating NAC with network security tools Should organizations separate technical from administrative security? What network equipment is needed to secure a small business LAN? Ethical hacking and countermeasures: Network penetration testing intro Are you on a domain name system (DNS) blacklist database? Rogue access points: Preventing, detecting and handling best practices Network security threats solved by risk management: John Pironti explains

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary network access control  (SearchNetworking.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary