Identity-Based Policy Enforcement: A LAN Security Best Practices Whitepaper

This paper focuses on the evolving nature of LAN security in today's enterprise in light of a dissolving network perimeter and the need for an identity-based solution to address new requirements. Network security policies arise from compliance and risk management initiatives across multiple lines of business throughout the organization. Security, compliance and business requirements are articulated in a readable policy built up from basic identity, role and group definitions, or can be read as network security access decisions that are mapped to user profiles. Identity is at the core of enterprise policies. Network infrastructure, and network security solutions built on top of the infrastructure, is not identity-aware, since network packet headers provide information about machine addresses and location, not user information.