Network World

How does certificate-based authentication work?

Network World - Mon, 05/10/2021 - 6:00am

Certificate-based authentication is a cryptographic technique that allows one computer to securely identify itself to another across a network connection, using a document called a public-key certificate.

To read this article in full, please click here

(Insider Story)
Categories: Network World

IBM embraces zero trust with upgraded Cloud Pak service

Network World - Wed, 05/05/2021 - 5:29pm

IBM has taken the wraps off a version of its Cloud Pak for Security that aims to help customers looking to deploy zero-trust security facilities for enterprise resource protection.

IBM Cloud Paks are bundles of Red Hat’s Kubernetes-based OpenShift Container Platform along with Red Hat Linux and a variety of connecting technologies to let enterprise customers deploy and manage containers on their choice of private or public infrastructure, including AWS, Microsoft Azure, Google Cloud Platform, Alibaba and IBM Cloud.

To read this article in full, please click here

Categories: Network World

Juniper takes SASE security control to the cloud

Network World - Wed, 05/05/2021 - 11:02am

Juniper Networks has laid a key part of its Secure Access Services Edge (SASE) foundation with a cloud-based security-control service that provides a central way to control and protect on-premises or cloud-based enterprise resources.

Called Security Director Cloud, the service focuses Juniper's SASE efforts by providing a central point to manage enterprise security services including policy setting, and threat-detection and -prevention.

Juniper (like other key enterprise networking vendors such as Cisco, Hewlitt-Packard Enterprise (Aruba) and VMware, as well as service providers including Cato Networks, Akamai, and Zscaler) has pledged allegiance to growing SASE support in its product families.

To read this article in full, please click here

Categories: Network World

Cisco adds to its Catalyst software stack for back-to-work safety

Network World - Tue, 05/04/2021 - 11:24am

Cisco has taken the wraps off a technology package it says will utilize existing core wireless and wired systems to help enterprises better control their physical environments and enable a safer, more secure return to the office.

While supporting remote offices and branches of one—IDC says that post-COVID, more than 52% of workers will either remain remote or hybrid—they rest could return to an altered business space.  

Who’s selling SASE, and what do you get?

In these offices, sensors and devices that have been used to manage lighting and HVAC systems can be adapted to occupancy and density monitoring, air-quality testing, contact tracing, and in-room presence, according to Anoop Vetteth, vice president of product management with Cisco’s Enterprise Switching and Software Solutions group.

To read this article in full, please click here

Categories: Network World

802.1X: What you need to know about this LAN-authentication standard

Network World - Wed, 04/28/2021 - 6:02pm

When devics on enterprise LANs need to connect to other devices, they need a standard method for identifying each other to ensure they are communicating with the device they want to, and that's what 802.1x does. This article tells where it came from and how it works.

802.1x defined

IEEE 802.1X is a standard that defines how to provide authentication for devices that connect with other devices on local area networks (LANs).

How to deploy 802.1x for Wi-Fi using WPA3 enterprise

It provides a mechanism by which network switches and access points can hand off authentication duties to a specialized authentication server, like a RADIUS server, so that device authentication on a network can be managed and updated centrally, rather than distributed across multiple pieces of networking hardware.

To read this article in full, please click here

Categories: Network World

Wi-Fi in 2025: It could be watching your every move

Network World - Mon, 04/26/2021 - 7:00pm

I consider myself a techno-optimist. Technology has improved life for humanity in countless ways, like the wheel, the printing press, selfie sticks—these marvels have enriched us all.

So too has Wi-Fi. If not for Wi-Fi, no one could idly stream YouTube videos on company laptops through rogue hotspots at a busy-but-socially-distanced coffeeshop when we’re supposed to be doing our jobs. Which is to say none of us could fully leverage the remote network-connectivity tools that allow enterprise employees to be productive any time and from anywhere.

To read this article in full, please click here

Categories: Network World

Organizations need to patch Pulse Secure VPNs

Network World - Fri, 04/23/2021 - 5:37pm

Organizations using Pulse Secure’s mobile VPN should patch vulnerabilities reportedly being exploited in the wild, possibly by a “Chinese espionage actor”.

The patch–available here–is considered important enough that the Cybersecurity and Infrastructure Security Agency (CISA) gave federal agencies a deadline of April 23 to apply them.

Backup lessons from a cloud-storage disaster

CISA’s guidance states that federal users of Pulse Connect Secure VPNs must use the company’s free utility to ascertain whether their devices are vulnerable.

To read this article in full, please click here

Categories: Network World

Backup lessons from a cloud-storage disaster

Network World - Fri, 04/23/2021 - 6:00am

European’s largest cloud provider, OVHcloud, suffered a catastrophic fire last month that destroyed one of its data centers and smoke-damaged a neighboring one. OVHcloud customers with data in the burned-out data cener who had their own disaster recovery measures in place or who purchased the off-site backup and disaster-recovery services offered by OVHcloud have been able to resume operations. Those who did not lost data that will never come back.

Some losses were complete, such as those described on Twitter by rounq.com who is still waiting for backups and redundancy that he thought were already in place, according to his tweets. Companies that had some type of off-site backup seemed to be up and running again, such as Centre Pompidou

To read this article in full, please click here

Categories: Network World

VMware bundles support for the branch-of-one workforce

Network World - Tue, 04/20/2021 - 12:20pm

VMware has unveiled an integrated package of cloud security, access control and networking software aimed at addressing the key needs of today's COVID-19-driven remote workforce.

VMware Anywhere Workspace brings together the company’s core enterprise software products, including its Workspace ONE unified endpoint management, Carbon Black Cloud cloud-native endpoint security, and secure access service edge (SASE) components, into a single system to support a widely distributed workforce.

Read more: Who's selling SASE, and what do you get?

"Enterprises are moving from simply supporting remote work to becoming distributed, anywhere organizations. Companies are rethinking where teams work, how they work, and how they support customers from wherever they are," Sanjay Poonen, chief operating officer, customer operations with VMware, wrote in a blog about the announcement. "To be successful, this means investing in technology and a long-term strategy to be a stronger, more focused and more resilient organization."  

To read this article in full, please click here

Categories: Network World

VMware targets branch-of-one workforce with integrated access, security, network package

Network World - Tue, 04/20/2021 - 12:20pm

VMware has unveiled an integrated package of cloud security, access control and networking software aimed at addressing the key needs of today's COVID-19-driven remote workforce.

VMware Anywhere Workspace brings together the company’s core enterprise software products, including its Workspace ONE unified endpoint management offering, Carbon Black Cloud cloud-native endpoint security platform, and secure access service edge (SASE) components, into a single deployable system to support the widely distributed workforce.

Read more: Who's selling SASE, and what do you get?

"Enterprises are moving from simply supporting remote work to becoming distributed, anywhere-organizations. Companies are rethinking where teams work, how they work and how they support customers from wherever they are. To be successful, this means investing in technology and a long-term strategy to be a stronger, more focused and more resilient organization," Sanjay Poonen, chief operating officer, customer operations with VMware, wrote in a blog about the announcement.   

To read this article in full, please click here

Categories: Network World

Water-authority network upgrade spots problems faster

Network World - Mon, 04/19/2021 - 5:56pm

The Albuquerque water authority says recent network upgrades give it greater visibility and control over its remote sites and makes for faster responses to leaks and other problems.

The Albuquerque Bernalillo County Water Utility Authority manages more than 3,000 miles of water-supply pipeline covering more than 650,000 users. The authority manages 135 remote locations, which include well sites, tanks, and pump stations, all of which have programmable logic controllers (PLC) connected to a dedicated, fixed-wireless network running at 900MHz back to the core network.

[Get regularly scheduled insights by signing up for Network World newsletters.]

“The [main treatment] plant was built [about] 15 years ago,” said Kristen Sanders, the authority’s chief information security officer. “So if a piece of equipment went out, replacing it would be about shopping on eBay.” Also the authority’s fiber backbone that connects the sites with the main plant was past it’s service life and had to be replaced.

To read this article in full, please click here

Categories: Network World

TCP/IP stack vulnerabilities threaten IoT devices

Network World - Fri, 04/16/2021 - 4:35pm

A set of vulnerabilities in TCP/IP stacks used by FreeBSD and three popular real-time operating systems designed for the IoT was revealed this week by security vendor Forescout and JSOF Research. The nine vulnerabilities could potentially affect 100 million devices in the wild.

Nucleus NET, IPNet and NetX are the other operating systems affected by the vulnerabilities, which a joint report issued by Forescout and JSOF dubbed Name:Wreck.

In a report on the vulnerabilities, Forescout writes that TCP/IP stacks are particularly vulnerable for several reasons, including widespread use, the fact that many such stacks were created a long time ago, and the fact that they make an attractive attack surface, thanks to unauthenticated functionality and protocols that cross network perimeters.

To read this article in full, please click here

Categories: Network World