Community safety agency Portnox on Wednesday introduced it’s including IoT fingerprinting options to the Portnox Cloud NAC-as-a-Service to permit corporations to extra simply establish and authorize units on their networks. The IoT fingerprinting options add new device-identification strategies to the community entry management product, together with MAC tackle clustering and DHCP (Dynamic Host Configuration Protocol) gleaning.
Portnox is a zero belief entry management firm specializing in community safety. Its IoT fingerprinting strategies are designed to profile units that sit on the community however can’t talk full figuring out data corresponding to model quantity, mannequin and even gadget kind because of lack of storage or computing energy.
IoT fingerprinting gathers data on what units are on the community, what they’re getting used for, and who’s utilizing them. It’s particularly used within the case of units corresponding to cameras, TV, printers, medical units, and manufacturing unit units. Many IoT units corresponding to these do not need enterprise-level safety—a giant drawback for community engineers and safety groups.
“Our clients and prospects have a number of anxiousness about these units,” stated Denny LeCompte, CEO of Portnox. “They wish to be sure solely the correct units get onto the community. There may be additionally an growing proliferation of shadow IT, whereby someone has simply plugged a tool into the community and the IT crew doesn’t find out about it. It might be an harmless act however the identical can be utilized or carried out by attackers as effectively,”
Portnox’s core product follows a whitelist of MAC addresses for units that may be allowed to hook up with a community. Nonetheless, this raises issues about MAC tackle spoofing and different methods through which attackers can conceal behind IoT units.
“The following drawback confronted is that whereas the IP and MAC addresses can be found, it isn’t recognized what gadget it’s. The IoT fingerprinting gathers data to inform the group what every gadget is,” LeCompte stated.
IoT fingerprinting provides added safety
With the brand new characteristic, clients of the NAC-as-a-Service can get added ranges of safety to their community, Portnox stated. In MAC tackle clustering, the community entry management course of identifies the MAC addresses of IoT units. Utilizing machine studying strategies and referring to IoT product databases, gadget sorts—together with particular fashions—can then be recognized.
Some units have their very own fingerprinting—in different phrases, the flexibility to retailer details about themselves, which permits Portnox to passively collect a number of details about the gadget. Whereas proximity sensors, for instance, could not have the ability to retailer details about themselves, Cisco routers have model numbers embedded in Cisco IOS.
As an added layer of safety, organizations can use DHCP gleaning. Though each DHCP request comprises the identical data, each gadget does it barely in a different way, creating a definite fingerprint. So, in the event you seize a DHCP request by a tool, you may establish what sort of gadget it’s.
Tapping the mixture of knowledge gathered by Portnox’s fingerprinting capabilities and knowledge despatched by the units themselves, organizations can precisely decide whether or not units are secure to hook up with a community greater than 90% of the time, LeCompte stated.
Advantages of NAC-as-a-Service
When somebody tries to entry a community—whether or not by way of a wired or wi-fi gadget—the NAC service will verify their identification and what ranges of entry they’re allowed on the community.
It’ll additionally verify the safety posture of the gadget getting used, ensuring that it’s working an antivirus, vulnerabilities are patched, and the correct ports are opened or closed. If the required safety posture just isn’t adopted, the NAC-as-a-Service doesn’t enable the gadget to entry the community.
“It’s all about having access to the community, the wi-fi, numerous sorts of purposes, and utility entry we management. It’s a zero belief coverage by default which suggests no person unknown will get onto the community,” LeCompte stated.
Pricing for the brand new IoT fingerprinting providing
The IoT fingerprinting characteristic from Portnox will solely be obtainable with the enterprise providing of its NAC-as-a-Service. There might be no further cost for the brand new characteristic. If a company is already utilizing NAC-as-a-Service, the fingerprint information will mechanically begin displaying up. NAC-as-Service is priced beginning $4 per gadget monthly.
Portnox competes with community entry management suppliers corresponding to Cisco, HPE, Fortinet, and Forescout. The corporate says being a cloud-native resolution supplier is their greatest differentiator. “The overhead on our product is a differentiator as a result of there isn’t a lot overhead in any respect,” LeCompte claimed.
Copyright © 2022 IDG Communications, Inc.