ForeScout Technologies' Uptime Enforcement Keeps Users ProductiveMexico's Leading Power Company Enforces Network Access Control Policies without Disrupting End User Productivity |
||
|
Cupertino, Calif. — Mar 27, 2006 —ForeScout Technologies, the leader in clientless network access control (NAC) and intrusion prevention solutions, announced today that its innovative Uptime Enforcement™ methodology has successfully been implemented on multiple customers' networks including Comisión Federal de Electricidad (CFE), Mexico's state power company. ForeScout's Uptime Enforcement methodology enables enterprise-wide NAC deployments without disruptions to user productivity or network operations.
CFE provides for the generation, transmission, and distribution of electrical power services to nearly 80 million people throughout Mexico, and required a NAC solution that allowed protection across a number of locations. After evaluating numerous solutions, CFE chose ForeScout's CounterACT network appliance to prevent illegal access to information and stop self-propagating threats, which severely diminished productivity and business continuity. "CounterACT's role-based access functionality is extremely beneficial to CFE as it secures access to our critical applications, ensuring that only the right employees are able to access sensitive resources," said Francisco Galindo, IT director at CFE. "ForeScout's solution was instrumental to solving the access control challenges through out the enterprise network with its policy definition and enforcement functionality." The "Uptime Enforcement" Difference John Pescatore, vice president and distinguished analyst at Gartner has noted, "Through 2008, enterprises that do not implement network access control (NAC) policies on network connections will experience 200 percent more network downtime than those that do."* Yet, one of the greatest concerns expressed by IT managers is how to implement this critical technology without disabling or otherwise adversely affecting network operations, such as overwhelming the help desk with users who have been disconnected due to non-compliance. Uptime Enforcement addresses this concern through optimizing a user's network access while transparently maximizing the security of the network. ForeScout's Uptime Enforcement is achieved by transparently integrating network access control into the user's existing logon process. Upon connection, the user proceeds onto the network completely unaware that CounterACT is initiating a deep interrogation of the device to check for policy violations. This immediate connection of known devices is possible since CounterACT automatically protects the network from any destructive self-propagating malware including zero-day worms. If the user's device is compliant, no action is taken and productivity is not impacted. If a policy violation is discovered, for example, antivirus definition files are out of date, CounterACT applies enforcement actions in accordance with policies set that correspond to the severity of the violation. If self-propagating malware is detected, CounterACT will issue a notice to the user in real-time letting them know their machine has been compromised, while automatically blocking only the traffic from the infected port - with minimal impact on productivity. With a wide range of enforcement options, CounterACT keeps users connected to the maximum extent while isolating and surgically addressing any identified security policy violation. CounterACT's enforcement options give organizations the choice of how to deal with discovered policy violations. If the initial violation is minor, as defined by the network administrator, CounterACT keeps users productive by automatically alerting the violating party through a brief notification message on their screen and offering the exact link needed to update or achieve remediation. CounterACT can respond to violations that cannot be resolved through self-remediation course by opening a trouble/helpdesk ticket for the specific policy violation, ensuring efficient use of time and IT staff and resources. "With ForeScout's solution in place our IT staffs are no longer 'firefighters', and are now able to focus on real network management issues," said Galindo. "ForeScout is a trusted partner in securing our sensitive data and protecting our network from "zero-day" malicious threats. If immediate action is required, CounterACT provides the ability to interrupt a user's HTTP session with a policy violation warning, requiring them to correct the violation in order to proceed. CounterACT can move the user into a remediation VLAN or simply provide the specific path for the user to complete full remediation, minimizing productivity impact. As threat severity increases, enforcement options become harsher (for example, moving to a quarantined VLAN, applying a virtual firewall to limit network access, or changing user's access privileges in the switch), sanctioned users can continue to be productive while network resources are protected. Only the most critical threats merit total disconnection from the network. "ForeScout is dedicated to providing our customers with technology that answers the business challenges that confront them on a daily basis," said Roy Rotem, associate vice president, Product Management. "CounterACT's ability to provide customers with Uptime Enforcement is just another example of the effort that is put into ensuring that all of ForeScout's solutions are flexible and add to our customers' ability to deliver network access coupled with real security." |
||
|
About ForeScout Technologies, Inc.
ForeScout's clientless network access control (NAC) solutions enable customers to implement and enforce network access policies of both managed and unmanaged devices in both a pre and post connect mode to gain complete control over network security without disrupting end-user productivity. ForeScout's flagship product, CounterACT, combines network access control and signature-less intrusion prevention in a single network appliance that interrogates and enforces controlled access of every device while seamlessly integrating with any existing IT infrastructure. ForeScout's NAC is completely transparent and enables enterprises to tailor enforcement to match the exact level of each policy violation, eliminating disruptions during device interrogation. Today, Fortune 500 corporations and government agencies have deployed ForeScout appliances globally controlling access to their networks and resources, defending against hackers and self-propagating malware, and ensuring business continuity. ForeScout's headquarters are located in Cupertino, California. |
||
| ### | ||
|
||
Print Page
PRESS CONTACTS:
Corporate Contact
Nancy Renzullo
ForeScout Technologies
408.213.3194
pr@forescout.com
Media Contact
Samantha Leggat
Lux Communications
925.447.5300
samantha.leggat@earthlink
.net
Corporate Contact
Nancy Renzullo
ForeScout Technologies
408.213.3194
pr@forescout.com
Media Contact
Samantha Leggat
Lux Communications
925.447.5300
samantha.leggat@earthlink
.net
View Webinars
"Who is in Control of Your Network Access?" featuring Brian Read, Conexsys Communications
Acclaim
"A straightforward NAC appliance that covers all the endpoint security bases."
Peter Stephenson, Endpoint Security Product Test, SC Magazine