On Implementing Real-time Detection Techniques in Future Network Access Control (NAC)

Designing network security perimeters to nullify security threats is the objective of ´security gurus´ involved in the development of security applications and devices. An organization, not uncompromising on security, dedicates a hefty budget proportion for deploying security plans and updates. Fighting and chasing the modern attackers 24times7 has enforced thoughts of redesigning security framework. Existing perimeter is layered of border routers, firewalls, IDS, IPS, VPN devices, software architecture over DMZs and subnets, beside server and host filters and antivirus applications. These are not fully customizable against adversaries in providing strong security framework. The current deployment nature of security perimeter where these layered components are prone to various egress and ingress nasty activities raises some serious questions. The traditional perimeters do not provide sufficient security to overcome these limitations in order to provide uncompromised security nodes [3][11][12]. To address security needs efficiently, at critical knots within a network, we introduce a security framework. The proposed framework focuses three key areas related to defense-in-depth; (1) maximizing synchronization among layered security services (2) modularizing various services for better endpoint security (3) reducing traffic while providing secure mechanism for encrypted updates in traditional networks. We show through analysis and emulation that our proposed framework meets the unique security needs of network infrastructure in a better way.