What We're Reading, Week of 11/19

Dark Reading – Half Of Machines Shopping On Cyber Monday Likely Contain Vulnerabilities Midsize Insider  – IT Security Threats: The Predictive Problem  SearchCloudApplications – Mobile cloud trends: Apps let enterprises handle the risks of cloud computing TabTimes – Study: Forget corporate deployments, BYOD will drive business adoption of Windows 8...

Q&A on VPNs & DirectAccess with Patrick Oliver Graf, Part 1

Today’s post kicks off a series of questions related to DirectAccess and VPNs that we’ll post over the next few weeks. Question: Microsoft equipped Windows 8 with additional DirectAccess features. Why should companies that have deployed Windows 8, continue using VPNs? Patrick Oliver Graf: At first glance, the reasons for implementing VPNs in a pure Windows environment with Windows 8 clients seem few and far between. After all, Windows 8 does not require the user to install a separate DirectAccess client – a task that was still required under Windows 7. Windows 8, however, shows certain weaknesses in combination with DirectAccess. For example, only Windows 8 Enterprise supports the improved DirectAccess management features of Windows Server 2012. In fact, many users, including business, run their systems on Windows 8 Pro, which means they do not benefit from the new features. A further, potentially problematic, issue is the close interlocking of DirectAccess and the Windows 8 operating system. This means security vulnerabilities or direct attacks on the operating system could also compromise DirectAccess connections. Stay tuned as Patrick addresses more questions related to DirectAccess and VPNs next week. If you have any questions that you would like answered, send them to editor@vpnhaus.com.  Patrick Oliver Graf is General Manager at NCP...

Readers’ Poll: What is Your Favorite iOS Device?

As BYOD continues to increase in prevalence, Apple devices are becoming more common in the workplace. On the heels of our recent announcement about the NCP Secure Enterprise Server’s integration with iOS products, we were wondering – what is your favorite iOS device? Don’t see yours listed below? Feel free to let us know what it is in the comments. [polldaddy...

Readers' Poll: What is Your Favorite iOS Device?

As BYOD continues to increase in prevalence, Apple devices are becoming more common in the workplace. On the heels of our recent announcement about the NCP Secure Enterprise Server’s integration with iOS products, we were wondering – what is your favorite iOS device? Don’t see yours listed below? Feel free to let us know what it is in the comments. [polldaddy...

Secure Authentication for Apple iOS Devices

As indicated by your feedback in several of our polls, and as highlighted at Interop New York, more and more users are opting to access their company network via various devices. Of all the devices involved in the BYOD movement, Apple iOS products are some of the most popular. In response to this demand, the NCP Secure Enterprise VPN Server now integrates with Apple’s iOS, so IT administrators can perform certificate-based authentication to control network access of iPhones and iPads. So, how does this work? Apple’s mobile device management (MDM) distributes various certificates to all authorized iOS devicies. When users establish VPN tunnels from their devices, the NCP Secure Enterprise VPN Server uses these certificates to determine what type of device the user is accessing the network with. This enables network administrators to, for example, allow a Mac OS X notebook full access rights, while limiting iOS devices to partial access to the central network. Also, users are unable to decipher or manipulate the certificates, significantly reducing the risk of certifications being duplicated for unauthorized devices. Security is, after all, one of the biggest concerns associated with BYOD. Ultimately, with its iOS secure authentication, NCP enables IT administrators to use certificates to control assignment rights on these end devices – without interfering with the user-determined username and passwords. Want to view the entire, official announcement? Check it out...