Rolling Review: Microsoft NAP
Can Microsoft's Network Access Protection challenge Cisco's network access control dominance? Yes--and not just because it's free.
Nearly 80% of respondents to our third annual InformationWeek Analytics NAC poll are evaluating or deploying network access control technology, but IT still has a big beef with its lack of interoperability. So it's to Microsoft's credit that early on the company moved away from trying to develop a proprietary system. Instead, it built a framework; developed a set of APIs for third-party integration; and, most important, aligned itself with the most widely accepted standards body in the NAC space, the Trusted Computing Group.
Of course, the fact that Microsoft is offering its Network Access Protection technology free with a Windows Server 2008 license can only help drive adoption. In fact, according to our poll, NAP already is pulling equal with Cisco Network Admission Control in terms of framework familiarity.
More Security Insights
- IT Executive Guide To Security Intelligence
- Emerging Security Trends and Risks. Insights for the Security Executive
Near term, the fruit of Microsoft's collaboration with the Trusted Computing Group is a new interoperability standard based on Microsoft's NAP and TCG's Trusted Network Connect. The spec defines a NAC industry-standard protocol, dubbed Statement of Health, or SoH, for reporting on the security profile of a given endpoint. SoH is a win-win for IT and vendors alike because it ensures that third-party clients can report and enforce system health with a Microsoft Network Policy Server (NPS). Conversely, the Microsoft NAP client built into Vista and Windows XP SP3 will, theoretically, seamlessly interoperate with third-party enforcement points.
Still, for the price, Network Access Protection is sure to take a bite out of Cisco's bottom line.