Security options for these devices include restricting the ability for unapproved devices or storage to connect to managed PCs and laptops, deploying an SSL (secure sockets layer) VPN to enable secure thin-client remote access to enterprise...
An IPSec VPN connection is all or nothing, namely once the connection is established it is just as if you are actually on the local LAN. Quocirca analyst Bob Tarzey explains what's good about some common virtual private network (VPN) technologies.
Finally, for an even safer security set-up WLAN users should consider creating a IPsec VPN. In this configuration each device (client and network) is fully authenticated and communicates via an encrypted VPN 'tunnel'.
One approach is to use an IPSec (internet protocol security) VPN but the processing overhead can impact on the quality of the voice service. To prevent this we create a VPN tunnel between the user and the VoIP servers.
There are really only two cons - an increase exposure of the corporate network (resolved by employee training and the clientless VPN device itself) and the capital investment required to install the device.
So you're suddenly looking at a VPN, and you can't set those up from scratch in a jiffy. British Standard 7799 part 3 outlines a method for risk assessment, and aligns with ISO 27001 - the 27000 series is the international version of BS 7799.
Did you find this white paper useful? 6 out of 9 users found this white paper useful
White Paper RSS
Download
