With the implementation of intelligent endpoint authentication and admission onto the network, using solutions such as 802. lx IBNS and Network Admission Control (NAC), there is a need to separate the "clean" endpoints, network, and services from the "dirty."
With virtualized networks, we can implement a "clean" network partition. As soon as employees authenticate and ensure that their laptop or computer is "healthy," it is admitted to the "clean" network and has access to normal applications. Endpoints found to be "dirty" (with a virus or other noncompliance issue) are admitted only to the "dirty" network, with access only to remediation services. In this type of system, each endpoint is scanned to ensure that all virus prevention signatures (or other criteria or credentials) are up to date.
Was this article helpful?