Special Edition Lippis Report on Network Security Issue 3: Scaling NAC to Campus LANs

July 28th, 2008

In this Lippis Report we offer an update to Network Access Control (NAC). The NAC market is at a pivotal point, as a key piece of technology that offers a third mode of operation is about to enter the market. This third mode, based upon authentication and distribution of NAC functions across existing appliances and network infrastructure will enable NAC to scale across an enterprise from its early deployments of guest, wireless and remote access to headquarter and campus LAN environments. We offer a view of how the NAC market is progressing and detail this distribution of NAC functions and enabling mode of operation which will allow business and IT leaders to build strong defenses in one of their most critical IT assets, the campus LAN.

StevenScaling NAC to Campus LANs

Listen to the Podcast

Read the rest of this entry »

Cisco Network Admission Control and Microsoft Network Access Protection Interoperability Architecture

Get the White Paper

July 28th, 2008

By Cisco Systems and Microsoft Corporation

Cisco Systems, Inc. and Microsoft Corporation have developed an interoperability architecture that allows customers to deploy both the Network Admission Control (NAC) platform available from Cisco and the Network Access Protection (NAP) platform developed for Microsoft Windows Vista© and Windows Server. The result is a set of components that interoperate, allowing customers to enforce health requirements for network access using a combination of components from Cisco and Microsoft. This white paper describes the set of characteristics that will support the interoperability architecture and how the interoperability architecture works. This paper was written in 2006 and thus much progress has been made in Cisco NAC/Microsoft NAP interoperability since its publication. Yet it still offers an excellent framework which will prepare architects for a major update during 2008.

Boosting Business Development with Citywide Wireless Access

Get the White Paper

July 28th, 2008

By Cisco Systems and The City of Dublin, Ohio

The city of Dublin, Ohio is home to more than 3,000 businesses, and continually strives to create an attractive economic environment. Information technology plays an important role in Dublin's efforts to bring the best and most promising businesses to the city, and it was important to provide access anytime, anywhere. "œA major emphasis has always been enhancing economic development and establishing a significant tax base that will take us into the future," says Mayor Marilee Chinnici-Zuercher. "œAccess to technology is a key element of our strategy, because we have a lot of small businesses that are global in their missions and purposes." Adds Jane Brautigam, City Manager, "œWe believe that providing better access to the Internet, via our network infrastructure, will bring companies to the city, and encourage them to grow their business here."

Utility Overhauls Network Defenses to Boost Control and Visibility

Get the White Paper

July 28th, 2008

By Cisco Systems and Jones-Onslow Electric Membership Corporation

Jones-Onslow Electric Membership Corporation (JOEMC) is a member-owned electric utility cooperative with a vital technology infrastructure. The cooperative's network supports a variety of critical applications, including an IP contact center, customer support and financial applications, and an outage management system that alerts JOEMC employees to service problems. All of these systems are essential to providing the electric service on which 60,000 JOEMC customers depend every day, and those customers demand the utmost reliability and security. However, one of the biggest challenges for JOEMC is supporting all applications and customers with just a four-person IT staff.

"œBecause we are a small department, we are always looking for solutions that can keep the network secure, but that do not require extensive support from our team," says Carrie Peters, Vice-President of IT/IS, JOEMC. To meet these requirements, JOEMC works with a variety of third-party vendors who provide technology, financial, and business services vital to the daily operation of the co-op. All vendors require access to the JOEMC network, ranging from periodic on-site visits to VPN links supporting managed services that must remain open at all times. Despite the number of outside parties that require access to the network, JOEMC lacked sophisticated tools to monitor and control vendor access. The safeguards that were in place (such as checking vendor PCs for viruses and malware before allowing them to connect to the co-op's network) were also labor intensive and time consuming.

Food Manufacturer Extends Its Workplace with Secure Remote Access

Get the White Paper

July 28th, 2008

By Cisco Systems and Del Monte Foods

Del Monte Foods is one of the largest, most well-known producers and distributors of premium food products in the United States. Founded in San Francisco in 1916, the company's net sales were US $3.4 billion in 2007. With a powerful portfolio of brands, Del Monte products are found in nine out of ten U.S. households. Like most leading companies, Del Monte depends on its network to support its key business operations, from enterprise resource planning (ERP) to data warehouse and customer relationship management (CRM) applications. Employees need frequent access to these systems, regardless of their location. However, Del Monte has a dynamic workforce. "œAbout 70 percent of our computers are laptops, and enabling our users to work remotely is a growing priority," says Dennis Tokarski, Manager of Telecommunications and Network Operations at Del Monte. "œWe have approximately 500 users who work out of the home office, a remote sales office, or a combination of both."

University of Pisa develops trail-blazing approach for cost effective compliance and protection of large city campus networks

Get the White Paper

July 28th, 2008

by Cisco Systems and the University of Pisa

At today’s colleges and universities, a growing number of research, communications and basic educational functions are supported and enhanced by the campus network. But with thousands of users, end-points and applications active at any one time, campus networks are becoming more difficult to protect. Propagation times are also shrinking, as is the window for responding to an attack before it causes widespread damage.

A survey conducted by Gartner and The Chronicle of Higher Education revealed that nearly all respondents had experienced virus and worm attacks in the past year, with 73 per cent saying that those attacks are accelerating. Not only that, but attacks are becoming more malicious. Some 53 percent reported that attackers had tried to cripple campus networks and 41 per cent confirmed that hackers had succeeded in penetrating their systems.

Scaling NAC to Campus LANs

Listen to the Podcast

July 28th, 2008

Steven SongThe NAC market is at a pivot point as a key piece of technology that offers a third deployment option is about to enter the market. This third option, based upon authentication and distribution of NAC functions across existing appliances and network infrastructure will enable NAC to scale across an enterprise from its early deployments of guest, wireless and remote access to headquarter and campus LAN environments. Most NAC appliances support two deployment options, in-band and out-of-band. In-band for small deployments and out-of -band for larger ones, but neither scale well for campus LANs. A new deployment option distributes device posture assessment, authentication and enforcement across NAC appliances, a radius 802.1x server and NAC enabled LAN infrastructure. This distribution of NAC tasks across NAC appliances and NAC infrastructure create scale to support large campus environments. Steven Song, Marketing Manager for Cisco Systems joins me to discuss NAC and how its maturing to the point that campus LANs are now being equipped with its defense mitigation protection capabilities. If you have requirements to implement NAC in your campus, then you need to listen to this podcast.

A New Approach to Branch Office Value Creation Emerges

Listen to the Podcast

July 21st, 2008

Shashi KiranThe networking industry has started to open up its software in the form of SDKs and APIs. Cisco, Juniper, Extreme, 3Com and the open source routing initiatives are allowing developers to write to well defined router software interfaces. This is an important development as it provides a venue for increased innovation in networking. But Cisco has taken this activity to a higher level by offering Linux and Windows platforms within its Integrated Services Router (ISR) and Wide Area Application Services (WAAS) products, delivering on the network as a platform concept. We focus on the ISR-based solution today as I talk with Shashi Kiran, Senior Manager Network Systems for Cisco Systems. We discuss this new trend in IT which takes integrated networking to the next level by integrating computing and applications in to the network fabric offering business and IT leaders a new approach to branch office value creation with the Application eXtension Platform. If you're designing new applications for, or optimizing branch office operations then you need to listen to this podcast.

Lippis Report Issue 109: Bad Economic Times Usher In Branch 2.0

July 14th, 2008

The global economic slowdown forecasted by economists and government agencies during the beginning of the year became real on March 7, 2008 when the Labor Department estimated that the nation lost 63,000 jobs in February. Since then, job loss continued to grow to nearly a half a million; Bear Stearns was sold to JP Morgan with help from the Federal Reserve; the housing mortgage crisis continued to brew while the drums of recession beat louder. This slow march of bad economic news culminated in the worst stock market performance during June since the Great Depression.

Read the rest of this entry »

St. Johannes Hospital Improves Patient Care With Wireless Mobility

Get the White Paper

July 14th, 2008

By Extreme Networks

St. Johannes Hospital in Troisdorf-Sieglar, Germany, with just over 400 staff members, has more than 182 beds and treats approximately 8,800 inpatients and equally as many outpatients each year. The hospital introduced Gigabit Ethernet at the core and switched fast Ethernet at the edge in 1998 to support its Picture Archiving and Communication System (PACS) for digital medical imaging. The Hospital Information System (HIS) was looking to create a virtually paperless hospital operations chain. Ideally, the intent was to have all patient information processed and stored digitally and made available to its staff whenever and wherever needed. The latest goal in making the hospital completely digital was to introduce mobile rounds with the use of Wireless Ethernet and laptops at patients' bedsides. This capability would mean the availability of all relevant patient information at each patient's bedside with each bed check. At the same time, the new infrastructure solution would have to support the hospital's mission-critical life-saving applications, all of which are bandwidth-intensive.

The Digital Communications Revolution"”Are You Ready?

Get the White Paper

July 14th, 2008

By Cisco Systems

As individuals, many of us struggle to keep up with the latest innovations. How many of us are waiting for the prices to come down before investing in a high-definition TV? In that case, waiting can prove beneficial. But companies and organizations that wait to take advantage of the latest technical advancements are at risk of being left behind. Innovations of the past 10 years are enabling a more productive, responsive, and collaborative workforce and customer community resulting in increased interaction, reduced expenses, and improved profits. This phenomenon is nothing short of a digital communications revolution. There is no question about the benefits it brings. The question is: Are you ready? More importantly: Is your network ready?

Extraordinary Customer Service

Get the White Paper

July 14th, 2008

By DK and Authored by Michael Miller

We are pleased to provide you with this 50-page book on delivering extraordinary customer service. This book is written for business and IT leaders and offers best practices for improving your customer's experience with your company. What your customers think about your company is often a result of their experience when they contact you. Whether or not they remain customers is often a result of the quality of service you provide. Extraordinary Customer Service explores the contact center as a strategic part of your enterprise, where you can leverage differentiated services to provide a superior customer experience that can build brand loyalty and increase profits. Presented here are the best practices, trends, and innovations that can help empower your people to be more productive, your processes to be more intelligent, and your customers to be more satisfied.

Retail Telephony: Dynamics and Costs of Inbound Call Failure

Get the White Paper

July 9th, 2008

By University of Arizona

In this paper, we report research results that specifically address two aspects of inbound retail telephony. First, how successful are inbound customer calls to retailers across different retail categories? Second, what are the potential consequences to retailers of these outcomes? To
implement this investigation, we report on several series of call studies to different categories of retail chain stores, including grocery (including full-service grocery), department stores, restaurant and specialty retailers.

How to get Sub-millisecond Application Performance

Listen to the Podcast

July 8th, 2008

Wayne EarlaCerno is a company that serves online ads at sub-millisecond speeds. It uses anonymous shopping data from a group of over 450 multichannel retailers to predict which products of more than 140 million online consumers will be likely to purchase. aCerno reaches nearly all online shoppers and processes over a couple billion queries per day. From the time of the query to the time an ad is served has to be 150 milliseconds or less. Foundry Networks’ equipment makes that possible. Wayne Earl, Director of Network Operations at aCerno is my guest as we explore aCerno’s IT infrastructure that allows it to deliver a fantastic service to its customers with very strict time constraints. If you’re looking to increase application performance then you need to listen to this podcast.