Port-based Network Access Control - PNAC

Aricent Port-based Network Access Control (PNAC) software is a portable implementation of IEEE standard 802.1X. It can provide security services in both LAN switches and Wireless LAN access points (APs). The PNAC software product reduces the time-to-market for OEMs and VARs who need to incorporate security services in their switching/routing equipment. The product offers easy portability and maintenance on multiple platforms.

When used in LAN switches, PNAC offers access control to protected resources existing in the switched network. When used in WLAN APs, it provides authentication of the WLAN stations and additionally improves the security by using the periodically exchanged key used to encrypt the data. The PNAC solution can easily be ported to various leading operating systems and switch hardware using well-defined external interfaces.

Features

• Supports Port Authentication: In the case of point-to-point links, the frames are forwarded only if the port is authenticated
• Supports MAC Address Authentication: In the case of shared LANs, the frames are forwarded only if the sender (MAC address) is authenticated for that port
• Interfaces with RADIUS clients for authentication and key refreshing
• Authenticator supports EAP-MD5, TLS and TTLS authentication mechanisms; and Supplicant supports EAP-MD5 authentication mechanism
• Provides a Local Authentication mechanism under which authentication is performed based on locally-configured users and passwords
• Provides interface to communicate the session key to the WLAN driver, if present
• Supports Supplicant functionality
• Supports all MIB objects as specified in the 802.1x standard
• Provides SNMP support for configuration and management
• Highly portable code which uses flexible buffer and timer management libraries
• Easily integrated with different types of switch hardware from various vendors