Hitachi Cable, Ltd. has announced it has confirmed the interoperability of its Apresia*1 authentication switch and the OnePointWall appliance server from SWAT Brains Inc. (Headquarters: Kyoto City, Kyoto; President: Hiroaki Kobayashi; referred to as SWAT Brains hereafter). The OnePointWall appliance server is an appliance server*2 that detects data transmissions from specific applications. Combining the two devices makes it possible to detect data transmission from a PC connected to the network when it uses specific applications like Winny and also makes it possible to isolate the PC from the network to prevent information leaks from the company. These capabilities mean it is now possible to implement follow-up measures after a PC is connected to the network.

Recent years have seen growing awareness of the security issues related to corporate data networks, leading not only to various measures to protect corporate networks against external attacks, but to measures to ensure the security of network connections from within the company, a domain previously considered secure. Insecure network environments can result in unauthorized network use, information leaks from users not authorized to connect to the network, and virus infections and disseminations originating from inadequately secured PCs.

Given these circumstances, Hitachi Cable has offered PC quarantine LAN solutions based on Apresia NA (Network Authentication) -a unique Apresia authenticating function- and the IEEE802.1X *3 international standard authentication. To extend availability to a wider range of clients and to meet a wider range of client needs, Hitachi Cable is also expanding the Apresia interoperability to quarantine systems and devices from other manufacturers.

A PC quarantine LAN solution generally focuses on isolating a PC that fails to comply with security policies before it connects to the corporate network. In practice, this approach makes it difficult to prevent unauthorized data transmission after a PC is connected to the network, when the user starts and uses file exchange applications like Winny or when a worm *4 is activated.

Seeking to close this loophole, Hitachi Cable has confirmed the interoperability of its Apresia authentication switch and SWAT Brains' OnePointWall appliance server, adding to the product line a new security solution that prevents unauthorized data transmission after a PC connects to the network.

SWAT Brains' OnePointWall appliance server supports real-time detection of data transmission from a PC connected to the corporate network by a worm or file exchange applications like Winny and is capable of blocking data transmissions. It does not require the user to install client software on the PC.

In systems combining Apresia and the OnePointWall appliance server, when the OnePointWall appliance server detects unauthorized data transmission from a PC, Apresia automatically isolates the PC from the corporate network. In addition to preventing data leaks to points outside the company, this approach prevents the spread of worms to other PCs connected to the corporate network.

Combining this system with a PC quarantine LAN solution that provides authentication and quarantine functions when a PC is connected to the network ensures a stronger security environment.

Hitachi Cable hopes to further expand its share of Ethernet switches in the enterprise and service provider markets by strengthening its lines of security solutions and their functionality through collaborations with partner companies and through its Apresia sales partner channels.

*1	Apresia is a registered trademark of Hitachi Cable, Ltd. in Japan.
*2	An appliance server is a server or computer dedicated to a specific function.
*3	IEEE802.1X is an authentication standard specified by the IEEE (US Institute of Electrical and Electronics Engineers) to control access to each port, primarily based on RADIUS authentication. It provides standard compatibility with the Windows 2000 and XP operating systems.
*4	A worm is an unauthorized independent application that propagates itself by repeatedly transmitting copies of itself to other PCs across a network.