Getting to the Real Endpoint of Endpoint Security

Endpoint device and access control for small to midsize businesses is itself becoming a big business, with vitually every major security vendor offering device and access control programs tailored -- and increasingly priced -- for the market.

Keith Ferrell, Contributor

September 26, 2007

2 Min Read
Dark Reading logo in a gray background | Dark Reading

Endpoint device and access control for small to midsize businesses is itself becoming a big business, with vitually every major security vendor offering device and access control programs tailored -- and increasingly priced -- for the market.This is good news -- a recent bigbiz survey showed that tackling network access control (NAC) costs companies as much as 12 percent of their entire IT budget.

Worth it if it fully secures the network against illicit access and prevents the introduction of unauthorized devices.

Problem is that both challenges are a) moving targets moving fast, and b) some of the users at those endpoints know just how fast the targets are moving.

Take a look at this look at NAC vulnerabilities to get a sense of the challenges centralized endpoint control has to deal with. (The rest of the Eight Overlooked Security Vulnerabilities is worth a read and re-read as well.)

But the stinger in the tail of the NAC section is the real endpoint issue: "there is no way to verify that the client is telling the truth about its configuration."

Tehcnical issues of client device verification are just that -- technical issues that can be addressed, and once addressed brings us closer to the real endpoint -- and teh real endpoint security issue.

That real endpoint is of course the user of the client device -- the employee (or, please no, the contractor, consultant, vendor or even visitor granted temporary access) who knows enough about your endpoint security procedures, programs, practices and policies to get around them.

No way around that, I fear, other than by taking advantage of one the many advantages that small to midsize companies afford: better knowledge of your employees and colleagues, better opportunities to communicate and enforce strong security policies, better awareness of who's doing what and why they need to (or don't.)

That's no small benefit, and one that, coupled with increasingly affordable NAC and security packages can give you a better than fighting chance of addressing the real endpoint security challenge before it becomes a hardware, software and business problem.

Read more about:

2007

About the Author

Keith Ferrell

Keith Ferrell

Contributor

See more from Keith Ferrell
Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe

You May Also Like

More Insights
Webinars
More Webinars
Events
More Events

Editor's Choice

Pegasus Spyware concept with binary code background
Endpoint Security
WhatsApp: NSO Group Operates Pegasus Spyware for CustomersWhatsApp: NSO Group Operates Pegasus Spyware for Customers
byJai Vijayan, Contributing Writer
Nov 18, 2024
4 Min Read
Laptop with Palo Alto networks logo
Cyberattacks & Data Breaches
Palo Alto Networks Patches Critical Zero-Day Firewall BugPalo Alto Networks Patches Critical Zero-Day Firewall Bug
byBecky Bracken, Senior Editor, Dark Reading
Nov 18, 2024
3 Min Read
ChatGPT, typed out on a screen
Сloud Security
ChatGPT Exposes Its Instructions, Knowledge & OS FilesChatGPT Exposes Its Instructions, Knowledge & OS Files
byNate Nelson, Contributing Writer
Nov 15, 2024
4 Min Read
Reports
More Reports
Webinars
More Webinars
White Papers
More Whitepapers
Events
More Events