Presentation is loading. Please wait.

Presentation is loading. Please wait.

PWG-IDS Differences of the attributes between NEA and NAP protocols By Ron Nevo Sharp June 2008.

Published bySeth King Modified over 11 years ago

Similar presentations

Presentation on theme: "PWG-IDS Differences of the attributes between NEA and NAP protocols By Ron Nevo Sharp June 2008."— Presentation transcript:

1 PWG-IDS Differences of the attributes between NEA and NAP protocols By Ron Nevo Sharp June 2008

2 NAP-Network Access Protection (Microsoft) NEA-Network Endpoint Assessment (Cisco) NEA and NAP are a new platform and solution that controls access to network resources based on a client computers (Health) identity and compliance with corporate governance policy. NAP and NEA allow network administrators to define granular levels of network access based on who a client is, the groups to which the client belongs, and the degree to which that client is compliant with corporate governance policy. If a client is not compliant, NAP and NEA provide a mechanism to automatically bring the client back into compliance and then dynamically increase its level of network access. SoH/SSoH- Statement of Health

3 NEA vs NAP (Attributes) Attributes Type Attributes name NAPNEANAP Comments Product Name Vendor-specified SoH Attribute Product Information Version Vendor-specified SoH Attribute Numeric Version / String Version Vendor info Name -- Product Information Vendor-specified SoH Attributes Id part of MS System Generated IDs Sub Packet in MS System Generated IDs Packet which is one of SSoH attributes Product Information Optional -Vendor-specified SoH Attributes OS Name/type- Product Information A mandatory SSOH attributes This value set is in MS- Machine-Inventory Packet (a SSoH attribute (TV pairs)) in SSoH. The packet also has 2-byte ProcArch at end. Ver. OS Version Major, Version Minor, OS version Build Numeric Version / String Version Patches SP ver. Major Sp ver. MinorProduct Information Install date and time -Product Information Release date

4 NEA vs NAP (Attributes) Attributes Type Attributes name NAPNEAComments Applications Name Product InformationIETF Std. Attribute Version Numeric Version / String VersionIETF Std. Attribute Patches Product InformationIETF Std. Attribute AV-Software Software name Name Software -ID Software identifier Version version Scan-Engine Antivirus version DAT Version Anti Virus version DAT date Anti Virus date Protection Enabled 0 enable, 1 Disable ActionVendor specific content

5 NEA vs NAP (Attributes) Attributes TypeAttributes nameNAPNEAComments Others NAP MS Quarantine State Packet A mandatory SSoH attribute MS Packet Info Packet A mandatory SSoH attribute MS System Generated IDs Packet A mandatory SSoH attribute MS Correlation Id Packet A mandatory SSoH attribute MS Machine Name Packet A mandatory SSoH attribute MS Machine Inventory Ex Packet A mandatory SSoH attribute MS Installed Shvs packet(include Health Validation Service Id) A mandatory SSoH attribute -

6 (New Attributes)? (New Attributes)? Attributes Type Attributes name NAPNEAComments Certification TokenPWG Sub-Type Attribute? Minimal Security LevelsXXPWG Attribute? Encryption Key LengthXXPWG Attribute? AlgorithmXXPWG Attribute? Admin Password = defaultXXPWG Attribute? Configuration TokenPWG Sub-Type Attribute? Bridging/Forwarding enabled?XXPWG Attribute? Fax EnabledXXPWG Attribute? Secure Time?XXPWG Attribute? Trusted Secure Time Service?XXPWG Attribute? Firewall SettingsFirewallIETF Std. Sub-Type Attribute

7 Other comments ?

Download ppt "PWG-IDS Differences of the attributes between NEA and NAP protocols By Ron Nevo Sharp June 2008."

Similar presentations

1Copyright © 2008, Printer Working Group. All rights reserved. Imaging Device Security (IDS) Working Group Longmont, CO - PWG F2F Meeting June 25, 2008.

1Copyright © 2008, Printer Working Group. All rights reserved. Imaging Device Security (IDS) Working Group Longmont, CO - PWG F2F Meeting June 25, 2008.
1Copyright © 2009, Printer Working Group. All rights reserved. PWG -Imaging Device Security (IDS) Working Group Irvine, CA - PWG F2F Meeting April 29,

1Copyright © 2009, Printer Working Group. All rights reserved. PWG -Imaging Device Security (IDS) Working Group Irvine, CA - PWG F2F Meeting April 29,
1Copyright © 2009, Printer Working Group. All rights reserved. PWG -Imaging Device Security (IDS) Working Group Seattle area, WA IDS-Microsoft F2F Meeting.

1Copyright © 2009, Printer Working Group. All rights reserved. PWG -Imaging Device Security (IDS) Working Group Seattle area, WA IDS-Microsoft F2F Meeting.
1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary Status Report IDS Working Group August 4, 2010 Bagsværd, Denmark- PWG F2F Meeting.

1Copyright © 2010, Printer Working Group. All rights reserved. PWG Plenary Status Report IDS Working Group August 4, 2010 Bagsværd, Denmark- PWG F2F Meeting.
Surviving the PCI Self -Assessment James Placer, CISSP West Michigan Cisco Users Group Leadership Board.

Surviving the PCI Self -Assessment James Placer, CISSP West Michigan Cisco Users Group Leadership Board.
Tech·Ed North America /6/2017 9:33 AM

Tech·Ed North America /6/2017 9:33 AM
Network Access Protection & Network Admission Control March 10, 2005 Teerapol Tuanpusa Network Consultant Cisco Systems Thailand Jirat Boomuang Technology.

Network Access Protection & Network Admission Control March 10, 2005 Teerapol Tuanpusa Network Consultant Cisco Systems Thailand Jirat Boomuang Technology.
10 Things You Can do to Secure Your PC Presented by Peter Nowak OIS Client Services Manager.

10 Things You Can do to Secure Your PC Presented by Peter Nowak OIS Client Services Manager.
5.1 Overview of Network Access Protection What is Network Access Protection NAP Scenarios NAP Enforcement Methods NAP Platform Architecture NAP Architecture.

5.1 Overview of Network Access Protection What is Network Access Protection NAP Scenarios NAP Enforcement Methods NAP Platform Architecture NAP Architecture.
What's new in Threat Management Gateway (TMG) 2010 Ronald Beekelaar

What's new in Threat Management Gateway (TMG) 2010 Ronald Beekelaar
WCL317 Disclaimer The information in this presentation relates to a pre-released product which may be substantially modified before it’s commercially.

WCL317 Disclaimer The information in this presentation relates to a pre-released product which may be substantially modified before it’s commercially.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Agenda Introduction Network Access Protection platform architecture

Agenda Introduction Network Access Protection platform architecture
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.

A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
Providing 802.1X Enforcement For Network Access Protection Mudit Goel Development Manager Windows Enterprise Networking Microsoft Corporation.

Providing 802.1X Enforcement For Network Access Protection Mudit Goel Development Manager Windows Enterprise Networking Microsoft Corporation.
1Copyright © 2008, Printer Working Group. All rights reserved. PWG Imaging Device Security (IDS) Working Group Lexington, KY – P2600 Meeting October 24,

1Copyright © 2008, Printer Working Group. All rights reserved. PWG Imaging Device Security (IDS) Working Group Lexington, KY – P2600 Meeting October 24,
Copyright© 2005-2006 Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 Tightening the Network: Network.

Copyright© Trusted Computing Group - Other names and brands are properties of their respective owners. Slide #1 Tightening the Network: Network.
Network Access Protection Platform Architecture Joseph Davies Technical writer Windows Networking and Device Technologies Microsoft Corporation.

Network Access Protection Platform Architecture Joseph Davies Technical writer Windows Networking and Device Technologies Microsoft Corporation.
The State of Security Management By Jim Reavis January 2003.

The State of Security Management By Jim Reavis January 2003.
1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.

1 Objectives Wireless Access IPSec Discuss Network Access Protection Install Network Access Protection.

Similar presentations

Ads by Google