ForeScout Updates CounterACT to Improve IoT Visibility
Getting visibility into potential threats from the emerging Internet of thing world isn't just about knowing a device is present, but also what it's doing. Security vendor ForeScout on May 26 announced an update to its CounterACT platform that provides enhanced visibility into IoT, all the way down to the power levels used by devices as an indicator of potential risk.
ForeScout has a rapid-release software methodology that is similar to a software-as-a-service (SaaS) approach, though technically CounterACT is not a SaaS offering, according to Rob Greer, the company's chief marketing officer and senior vice president of products.
"The CounterACT platform is delivered as a core software version—in this case, 7.0 and pluggable software modules that facilitate in-service upgrades," Greer told eWEEK. "These specific capabilities are offered in new versions of the Switch and Wireless software modules for CounterACT 7.0."
The CounterACT platform itself provides Network Access Control (NAC) capabilities among its numerous features. CounterACT has preadmission enrollment capabilities that limit endpoint network access until endpoint posture is determined to be compliant, he said. If an endpoint is compliant, the endpoint's network access is changed to the appropriate level for that user and endpoint device type. If the endpoint is not compliant, CounterACT initiates remediation activities. Once the endpoint is validated to be compliant by CounterACT, the network access is changed to the appropriate level for that user and endpoint device type, Greer said.
Understanding Power over Ethernet usage on devices can help manage potential risks, and ForeScout has updated CounterACT to help do just that.
As part of the existing feature set, CounterACT could already discover Power over Ethernet (PoE) devices and classify them in some cases based on generic techniques such as monitoring their network traffic.