- Nokia's new N97 vs. the iPhone
- 10 Microsoft research projects
- Hard to get justice in MySpace case
- Smartphone smackdown: Storm vs. iPhone
- Apple removes antivirus support page
Businesses have a new option for Secure Sockets Layer remote access equipment as NetScaler adds software to its Web-acceleration appliance.
The software adds authentication and authorization capabilities to its Request Switch 9000 iON appliance, making it possible for remote users to log on to the device and have it proxy SSL sessions to servers on the network. To initiate a session, the remote machine only needs a Web browser that supports SSL.
These new capabilities pit the company against a host of vendors that focus exclusively on SSL remote-access such as Aspelle, Aventail, Neoteris, Netilla and Whale Communications. All these companies share the fact that their boxes sit on the LAN side of corporate firewalls and proxy SSL sessions between remote users and corporate servers, although NetScaler says it improves the efficiency of these connections.
"NetScaler deals primarily with performance issues and may very well be ahead of the game at tying SSL VPNs to good performance for the applications being accessed," says Dave Kosiur, an analyst with Burton Group. He says NetScaler customers that consult with Burton give NetScaler good marks in the areas of filtering, acceleration and load balancing.
NetScaler's weakness is in securing the remote machine, Kosiur says. Nokia's and Whale's proxy appliances determine whether the remote machine is trusted, and based on this adjust how much remote users can access. So a user connecting from an Internet kiosk might be authorized to check e-mail while a user connecting from a company-issued laptop would be allowed access to all applications.
In the trade-off between security of the remote machine and performance, security wins, says Eric Walter, manager of network services for retail chain 7-Eleven, which is beta-testing NetScaler's new software. But he says lack of tools to alter access rights based on the type of machine accessing the network would not be a deal-breaker with NetScaler. Instead, he would restrict access for all users to a very limited subset of applications until NetScaler came up with a way to tailor access rights. NetScaler says those tools will be ready later this year.
7-Eleven has considered SSL remote-access gear from Nortel and other vendors, but found the types of applications that were accessible to be too limited.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment