This week, at the Black Hat conference in Las Vegas, security expert Ofir Arkin of Insightix, has demonstrated the vulnerability of Network access control (NAC) technology although it has been marketed as just the opposite. Being the heart of enterprise networks security solutions implemented by Cisco, Microsoft and Symantec, the NAC is a puzzle of holes that allows for protections bypass. Ofir presented general aspects of circumventing NAC security solutions in order to gain access to the protected networks.

"The technology's immature. But [NAC] will increase my capability to keep my network in good condition. Can it be maneuvered to have false data? Yes. Would it be completely the case that every device on my network will provide false data? Unlikely. It's inherently going to be found that there are weaknesses. But I think that's the wrong thing to focus on. We want to address the weaknesses, but focus on the benefits," said John Stewart, Chief Security Officer at Cisco, commenting upon the maturing process of the technology into a comprehensive protective solution.

Arkin put under the spot light the Dynamic Host Configuration Protocol proxy servers used in NAC, unmanaged switch access in mixed network of switching and routing gear and spoofing accepted MAC and IP addresses.