How much security is enough?

With the increased importance of outsourcing, cyber collaboration, information sharing, and legally binding digital signatures, your partners and clients share your risks and are now key stakeholders in this equation.

Prudent and transparent security is now a cost of doing business. Those that modernize now survive, those that don't, won't.

To modernize efficiently and effectively 1) Find a community that defines cyber security prudence and 2) Adopt enterprise architecture and project management practices to control your modernization initiatives.

Tuesday, January 29, 2008

SSO Lab with NAC and FIPS 201 Cards

If you are like me, I would want proof positive that NAC will work with FIPS 201 smart cards. In 2007, we set out to prove it to ourselves, so we constructed an Ecosystem lab scenario to demonstrate SSO using products from two different NAC products, fips 201 smart cards, a few network switches and routers, and a directory.

Here is a video of one of many use cases we demonstrated to ourselves in the Ecosystem Lab.



Click here if you want a bigger picture view of this video.

The video clearly shows that SSO can work with NAC and FIPS 201 smart cards. Now that you know that it works, the first challenge is to make sure you purchase products that will interoperate as well as the ones in our Ecosystem lab. The second, and bigger challenge, is to 1) determine your network authentication policy and 2) to make sure you have enough data in your directory infrastructure to implement your policy.

Posted by James Ryan
Labels: