Home page logo

pen-test logo Penetration Testing mailing list archives

White paper release: Bypassing network access control (NAC) systems
From: Ofir Arkin <ofir () sys-security com>
Date: Wed, 20 Sep 2006 00:19:15 +0300

Dear all,

I am pleased to announce the availability of a new white paper "Bypassing network access control (NAC) systems". The paper discusses weaknesses and ways to bypass existing NAC solutions.

From the abstract:
The threat of viruses, worms, information theft and lack of control of the IT infrastructure leads companies to implement security solutions in order to control the access to their internal IT networks. A new breed of software and hardware solutions from a variety of vendors has recently emerged. All are tasked with one goal - controlling the access to a network using different methods and solutions. This paper will examine different strategies used to provide network access controls. Flaws associated with different NAC solutions will be presented. These flaws allow the complete bypass of each and every network access control mechanism currently offered on the market.

The paper can be downloaded from:

My Blackhat 2006 presentation can be downloaded from:

Ofir Arkin
Ofir at Sys-Security dot com

This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

  By Date           By Thread  

Current thread:
  • White paper release: Bypassing network access control (NAC) systems Ofir Arkin (Sep 19)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]