SOURCE: StillSecure


October 06, 2009 12:14 ET

StillSecure Provides Multiple Access Control Options to Manage Diverse Categories of Network Users

New Functionality in StillSecure Safe Access Provides the Flexibility and Granularity to Manage Endpoints Based on User Class and Device Type

SUPERIOR, CO--(Marketwire - October 6, 2009) - StillSecure®, provider of secure network infrastructure solutions, today announced the latest release of Safe Access, the company's award-winning network access control (NAC) solution. Safe Access now offers eight access control options -- from whitelist to blacklist with six "grey" options in between -- which allows administrators to granularly manage all network user types. In addition, improved endpoint activity monitoring with expanded search capabilities and streamlined display information enable quick isolation and management of "flagged" endpoints.

"We have been working extensively with the Safe Access product from StillSecure since it was released over five years ago. Since its inception, this product has set the bar in terms of intuitive administration, testing/enforcement flexibility, and tangible increase in IT effectiveness," said Dom Genzano, Senior Partner and Co-Founder of STIGroup. "We're finding that an increasing amount of organizations are looking at NAC solutions as an integral part of their regulatory compliance strategy, and Safe Access has been our consistent preference because it can be implemented in virtually any network environment."

Managing multiple user types

Safe Access now provides eight access control options, giving administrators the granular flexibility to test different user types based on the risk that they pose to the network. Access control options progress from lenient to strict depending on user class and device type. Options include: whitelist, administrator grant access, whitelist with testing, innocent until proven guilty, guilty until proven innocent, blacklist with testing, administrator quarantine, and blacklist.

For example, executives and VIPs could be whitelisted because they do not need to be tested as part of company policy. Road warriors may be put into a guilty until proven innocent policy because of their high-risk devices, whereas suspect devices (those that have been flagged based on malicious endpoint behavior) may be put under an administrator quarantine or blacklist policy, depending on threat level. Whitelist with testing and blacklist with testing allow the administrator to whitelist or blacklist devices while still testing them for regulatory compliance and reporting purposes.

According to Gartner, "The biggest myth about NAC is that it requires blocking users from network access if they are missing patches or have out-of-date antivirus signatures. This approach is rarely used -- to do so generally does more harm than good. Although we are starting to see the conservative implementation of quarantining within some mature NAC implementations, it is not required for vulnerable systems that do not present a danger to other endpoints."*

Improved endpoint activity monitoring

The intuitive interface and expansive search and filter capabilities enable fast, efficient administration of connected endpoints. Expanded search capabilities help administrators quickly isolate and manage endpoints of interest -- either individual devices or groups of devices. For example, an administrator can now filter endpoints based on a failed test to determine who has not updated their anti-virus, or by access reason to determine why non-compliant devices have been quarantined. Additional search criteria include filter options by testing method, connection status, and last activity time.

"The simple pass-fail approach to NAC has become obsolete because it doesn't take into account the flexibility required to manage the full spectrum of access control requirements, which includes user category, type of device, and the corresponding threat level," said Alan Shimel, Chief Strategy Officer at StillSecure. "With this new Safe Access release, we're increasing organizational productivity by enabling fast, efficient administration of connected endpoints. Now low-risk, high-value employees can have immediate network access without compromising security levels."

Pricing and availability

StillSecure Safe Access is available immediately from StillSecure or through any of its authorized resellers. Safe Access is available as software (subscription or perpetual licensing available) or as a preconfigured hardware appliance. Both options include all standard security tests and test updates, software upgrades, and engineer-delivered technical support. For a Safe Access trial contact StillSecure sales at

About StillSecure

StillSecure delivers comprehensive network security that protects organizations from the perimeter to the endpoint. Offering both products and managed security services, StillSecure enables customers to affordably deploy the optimal blend of technologies for locking down their assets and complying with security policies and regulations. StillSecure customers range from mid-market companies to the world's largest enterprises and agencies in government, financial services, healthcare, education, and technology. For more information please call (303) 381-3830, or visit

* Gartner, Inc., "Network Access Control in 2009 and Beyond" by Lawrence Orans and John Pescatore, January 23, 2009

Contact Information