macmon TP – high end security technology for 100% device identification
The endpoints in the network are presently authenticated using the current methods via a MAC address, a fingerprint or a certificate-based system, if the 802.1X standard is being used. Each of these methods provides a good or very good baseline security but they are not completely tamper-proof. Various attacks have shown that the defence mechanisms have to be enhanced because all the present methods are based on information that - even if partly very hard - can be faked or copied and thereby can be overcome on the device of an attacker.
The starting point of the high-security component macmon TP for reliable device identification is the "Trusted Platform Module" (TPM), a chip based on the TCG* specification.
The product option of macmon TP contains a client and server component. The client component is part of the macmon agent. It in turn uses the options and properties of the trusted platform module to detect and identify the endpoints based on the hardware. Since the key, the TPM chip and motherboard are firmly connected to each other, the identification of the system is considered as 100% tamper-proof.
macmon TP should be purchased as an option to the macmon system. The product options of macmon NAC basic and macmon VLAN Manager are required. The licensing takes place depending on the number of clients to be secured.
The development of macmon option macmon TP was funded as part of the program to promote research, innovation and technologies (ProFIT) of the European Union.
macmon TP Supports TCG Specifications.