3Com improves NIC security features

by Phil Hochmuth
Be the first to comment | I like it!
More »
on this topic
April 13, 2001, 02:07 PM —  Network World — 

3Com this week will announce a new firmware add-on for its network interface cards that could be used to lock down servers and PCs to prevent hacks from outside or inside a company.

The network firm says the new NICs let network professionals secure networked PCs and servers by controlling exactly what can be done from a client PC or who can access certain servers. 3Com says the NICs can boost the speed of nodes that send encrypted data by off-loading encryption algorithms and other packet processing tasks from a PC's processor to the NIC.

A firewall enhancement will also be available on 3Com's 3CR990 10/100M bit/sec NIC with the on-board 3X reduced instruction set chip processor. The firewall technology will reside on the NICs as firmware. 3Com developed it with security software firm Secure Computing.

On the client side, the NICs can be configured to prevent end users from sniffing packets or spoofing an IP address. The NICs can also prevent end users from sending fragmented packets - a technique used in some distributed denial-of-service attacks. The NICs can be configured to limit which network servers a PC can access.

In a server, the NICs can be configured to allow access only to certain users, such as an extranet business partner, based on IP address. Server NICs can be told not to send pings or fragmented packets, which can help stem distributed denial-of-service attacks if a server is taken over by hackers.

In order to set and distribute security policies across an organization, 3Com's Embedded Firewall Policy Server is required. The Windows NT/2000-based software lets users make standard security templates and distribute the settings to NICs across the network. The server is also required for retrofitting existing 3CR990 NICs with the firewall software and for upgrading the NICs as new versions are released.

As companies open their corporate firewalls to share resources with online business partners and extranet customers, securing resources inside the firewall becomes critical, according to John Harrison, product line manager for 3Com. Additionally, businesses must deal with the threat of network resource abuse by internal employees.

"There's a lot of contractors, temporary employees or even malicious insiders who can reek havoc on a corporate network," Harrison says.

In a 2000 survey of 643 U.S. organizations conducted by the Computer Security Institute (CSI) in San Francisco and the FBI, more than 70% of the companies said they had at least one incident of unauthorized network use by someone inside their networks. The CSI/FBI survey found that external hacking occurred in only 30% of the companies and that the average monetary damage done by external hackers cost companies an average of $25,000, as opposed to the average cost of $1.8 million for internal system attacks.

The cost of a single desktop NIC firewall upgrade is $50. The Embedded Firewall Policy Server costs $1,000, and a single-client license for the server costs $200. The firewall upgradde and server software will be available in the third quarter. The 3CR990 PC and server NICs are available now, and cost $120 and $130 each.

» posted by ITworld staff

Network World

I like it!
Post a comment
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
Free books

Essential JavaFX
Get started building rich Web apps quickly with an introduction to the power of JavaFX key features -- scene node graphs, nodes as components, the coordinate system, layout options, colors and gradients, custom classes with inheritance, animation, binding, and event handlers.Enter now!

The Nomadic Developer
Consulting can be hugely rewarding, but it's easy to fail if you are unprepared. To succeed, you need a mentor who knows the lay of the land. Aaron Erickson is your mentor, and this is your guidebook. Enter now!

Featured Sponsor
Case Study: AISO grows its "green" business

AISO founders envisioned a Web hosting company that was environmentally friendly. While the company employed energy-efficient innovations like solar panels, its infrastructure produced unacceptable power and cooling requirements. Find out how AISO leveraged AMD technology to overcome their challenge in this case study white paper.

Download this white paper »
Myth of the Million Dollar Database

In this whitepaper, Scalar explores the opportunity to change the landscape with respect to mission critical databases built around Oracle. Leveraging technologies such as Linux, high-end commodity processing power and Oracle RAC technology to architect, design, build and maintain database infrastructure that delivers maximum availability, reliability and performance at a fraction of traditional cost.

Download this white paper »
Success Story: Weather.com handles whatever nature serves up

On a typical day, weather.com, the Web site for The Weather Channel in Atlanta, serves up between 15 million and 20 million page views. But in September 2004, when back-to-back hurricanes ransacked Florida, the peak traffic on one day more than tripled: over 70 million page views by more than 7 million unique visitors. Read the full success story now.

Download this white paper »
Marketplace