Global service provider iPass is introducing security features this week aimed at enforcing the corporate security policies of its customers.

The four features fall under a product umbrella called iPass Policy Orchestration. The features - endpoint self-quarantine, dynamic policy retrieval, assessment verification and coordinated enforcement - will be rolled out throughout the rest of the year, says Roy Albert, CTO at iPass.

One industry expert gives the initiative a positive review.

"One of the things that is impressive about this announcement is that [iPass] has spent a lot of time integrating every possible security client you can run on a laptop," says Abner Germanow, program manager at IDC.

The service provider is working with 45 security vendors to better integrate their wares with iPass' Corporate Access worldwide remote-access service. IPass already has integrated the products with its network, but still is working out the kinks of rolling out services based on the technology, Albert says.

The vendors range from well-known to lesser-known organizations and include AppGate, Cisco, Check Point, Internet Security Systems and Mobile Automation. A full list of the security technology partners can be found at here.

Endpoint self-quarantine uses a personal firewall to ensure users' PCs adhere to corporate security policies as they attempt to surf the Internet or connect to their corporate VPN. Users required to have the latest Microsoft security patch to access their VPN might be denied access for not having it, but they still might be able to surf the Internet.

Dynamic policy retrieval lets network administrators make policy changes to how all users access the corporate network directly from their desktop. Today, all policy changes go through the iPass trouble ticket system.

Using assessment, remediation and patch management systems, the iPass assessment verification feature confirms a user's system is up to date and if it's not, the correct security patch automatically is sent to that user's machine. Whereas endpoint self-quarantine merely blocks access if a user does not meet policy, assessment verification works to remedy the non-compliance.

The coordinated enforcement feature specifically addresses VPN access policies at the customer's network, after a user might have already gone through the endpoint self-quarantine process. IPass is working with network enforcement systems such as Cisco's Network Admission Control and Microsoft's Network Access Protection to block access to a VPN if a user's PC is not configured correctly or is infected with a virus. Vendors are just introducing these systems now so this feature likely will be one of the last iPass makes available.

Whitepapers

• Best Practices for HP Servers and HP Enterprise Virtual Array in a Microsoft Exchange
• Network-Wide Change Management Visibility with Route Analytics
• REMOTE CONTROL: How to Reduce the Cost, Complexity and Risk of Managing Your Distributed IT Infrastructure
• Steal This Script: Hands-On Tips for Service Impact Network Management
• The Case for an Untethered Enterprise
• Best Practices for WAN Optimization with Data Replication

View more LANS & WANS whitepapers

Webcasts

• WAN Optimization Editorial Webcast
• Best Practices for Deploying WAN Optimization for Disaster Recovery
• Tips and Techniques for Remote Data Backup and Delivery
• WAN Optimization Landscape
• High Availability for SQL Server 2005 Using Array-Based Replication and Host-Based Mirroring Technologies
• Technical Overview of Exchange Server 2007 with HP Servers and Storage

View more LANS & WANS webcasts

Special Reports

• Network World Executive GUide: The Virtualization Equation
• Get More From Your WAN
• Learn how to Keep your Mobile Workforce Connected
• WAN Optimization: How to rev up sluggish applications
• The Wireless Explosion
• Network World Executive Guide: Perfecting Application Performance Management

View more LANS & WANS special reports