Port security is a security characteristic of ethernet switches through which every interface is permanently linked ("sticky") with one or more MAC addresses with the result that only they have the possibility of communicating. At the interface to the LAN, this prevents access by unauthorized endpoint devices, thereby giving protection from attacks from within the company's own network.
In modern networks, support for the standard IEEE 802.1X constitutes an enhancement of port security. The MAC address no longer "sticks" to the port, instead being stored on a RADIUS server. The advantage of IEEE 802.1X authentication lies in the possibility it offers for the worldwide administration of an MAC address. In complex, heterogeneous networks with high levels of user mobility in particular, access authorization for an MAC address within a LAN or VLAN can now be administered globally and is no longer restricted to access to a specific port.
Port Security? – We have state-of-the-art firewalls and virus scanners!
According to a survey by the Gartner Group, more than 70 percent of all unauthorized access to sensitive corporate data is gained by users who are actually authorzsed, be they the company's own staff or partners. More than 95 percent of all attacks lead to a significant financial loss. Recognizing and preventing unauthorized attacks is the task of the port security function.
Modern port security solutions can recognise automatically whether the authorized user would like to log onto the network with his or her own access authorization from the terminal assigned to him or her. If these parameters comply with one another, the user is granted access to the corporate resources – within the scope of the access rights granted to him or her. If the access in question proves to be unauthorized, modern port security solutions automatically trigger an alarm and react in accordance with the presettings – up to and including the possibility of blocking the port automatically.
Vendor independence for comprehensive network security
Many port security solutions are proprietary in their orientation and only secure company networks with vendor-specific components. In complex, heterogeneous networks in particular, this is a problem. In growth-oriented networks, too, a proprietary port security solution would be tied to particular component vendors.
AUCONET's port security solutions are successful in helping you to fulfil your objective of a comprehensively secured network. AUCONET is vendor-independent and encompasses your entire network.
AUCONET solutions stand out by virtue of the following attributes:
- Independence from vendors
- Supports the IEEE802.1X standard
- Includes older devices on layer 2
Find out more about the innovative AUCONET solutions in the field of network access control and management.