|
A. Network Access Control, or NAC, is the security industry’s answer to the increasingly challenging problems of securing the network. 90% or more of North American enterprises have strong perimeter security defenses, so attackers have adapted their methodologies by attacking from the inside out. NAC was born out of the requirement to protect the interior of the network effectively.
A. There are three elements that distinguish the Mirage approach:
- Full-Cycle approach: Most NAC solutions start and stop with checking security at network entry. Mirage NAC check both on entry and continuously post-admission, and provides quarantining and remediation capabilities to stop and fix threats before they impact the network.
- Ease of use: Mirage NAC works on every OS, with existing infrastructure, stopping threats that originate from any IP device.
- Ease of management: Mirage NAC is network-based, and requires no agents, signatures, or user training. Plus, its threat recognition is behavior-based, so it works right of the box.
A. Mirage NAC was designed specifically to protect internal networks against rapidly propagating threats and LAN attacks, and complements perimeter security solutions by providing an essential and missing element of network security, targeting threats that originate inside corporate networks.
| Traditional Security: |
Mirage NAC: |
| In-Line Deployment |
Virtually Inline Deployment |
| Network Perimeter |
Network Interior |
| Latency |
No Latency |
| Point of Failure |
No Point of Failure |
| Covers Real Devices |
Covers All IP Space |
| Covers Known Devices |
Covers All Devices |
| Binary Action (allow/deny) |
Graded/Measured Response |
| Blocks What You’ve Seen |
Blocks What You Haven’t Seen |
A. This refers to Mirage’s deployment model: not physically in-line. Despite this virtually inline connection, its behavioral algorithms allow Mirage NAC to function as effectively as in-line threat mitigation devices. By deploying virtually inline, Mirage NAC installs and configures easily without complicated network reconfigurations and without introducing a risk of latency or failure in the network.
A. Once it identifies a threat, Mirage NAC uses unique, patent-pending technology to force all traffic from the threat source to be directed to Mirage NAC itself. This process involves changing the ARP tables in the attacking or infected device to create a "mirage" network that it can communicate with, all the while dropping the malicious packets and preventing them from reaching the real network. This action isolates the computer from the real network and eliminates the risk of the threat spreading to other devices.
A. Mirage NAC is focused on the internal network and can detect and mitigate malicious activity that bypasses traditional security products. For example, the corporate firewall has no chance of identifying or isolating a worm-infected laptop that plugs into the LAN. Mirage NAC is designed to complement and complete the network security picture. Mirage NAC’s detection features can also help organizations fine-tune their intrusion detection systems (IDSs) by watching all the unused IP space, and allowing the IDS to watch only real devices. This will drastically reduce the amount of false positives that IDS systems log.
A. Mirage NAC is compatible with most switching infrastructure, with multiple deployment options to support diverse equipment vendors. Contact sales@miragenetworks.com for questions about specific vendor support.
|
