They want better control over access and use of information, and in particular, they want to prevent the misuse of confidential information. This is especially so in heavily regulated sectors like healthcare, finance, and government. Such organizations are required to prove compliance with confidentiality regulations. That trend is international, albeit with the country-specific legislation and regulations.

The "user-centric" security approach
"Security is, by definition, an extremely broad subject but it’s not realistic to aim to be all things to all people. We are therefore focused on 3 key areas: how the network, mobile technologies and business applications are used and should be used," continues Michel Emelianoff.

"Taking this user-centric approach is vital," he says. It hinges on allowing finer access control and applies equally to accessing data, applications, and communication resources.

Focusing on these areas –network, applications and mobility– allows Alcatel-Lucent to really add value through its innovative solutions, backed up by the ability to execute in the field through its distribution network, notably its trusted Business Partners.

Network security: the "user aware" solution
Looking at networks, Alcatel-Lucent continues to develop secure, standards-based network elements and appliances. This goes beyond embedding security in switches: it extends throughout the network infrastructure, and provides end-to-end solutions that give organizations effective control over what users can and cannot access.

In particular, Michel Emelianoff highlights Alcatel-Lucent’s excellence in the area of pre- and post-admission network control. This addresses a range of concerns including authentication, host integrity check, role-based access, intrusion prevention, quarantine, remediation and compliance.

And importantly, all of these concerns are addressed in ways which give maximum flexibility for the customers, allowing deployment in multi-vendor systems, incorporating a wide range of standards, and protecting most types of network and connection modes (wired, wireless, or remote VPNs).

Application security
The accelerating adoption of new technologies –web services, wireless devices with remote access, and VoIP, especially– demands a reexamination of the traditional "perimeter focus" for security, stresses Michel Emelianoff. "There is a rising need for more granular ways of controlling how users access corporate data applications and resources," he notes.

The focus is very much on enabling new ways of working, without compromising on security and protection standards. Alcatel-Lucent’s solutions, applicable across organizations and including outside users, therefore provide:

• Run-time encryption, ensuring corporate data is kept private,
• Unique user-aware and ‘stateful’ (as opposed to ‘transactional’) session-based access, governed by policies for information access control,
• A single encryption point.

The leading example –fruit of a decade of research into convergence-related security by Alcatel-Lucent Bell Labs– is the OmniAccess 8550 Web Services Gateway, released in December 2007. Embedded in the customer’s network, this product is unique in its ability to deliver the features above and the consolidated audit trail necessary to meet corporate governance obligations, eliminating barriers to effective business process automation and opening the door to services oriented architecture.

Addressing the mobile "blind spot"
Of major concern, often identified as an area of serious vulnerability for enterprises, is adequately securing the mobile user. This extends from ensuring secure access through to protecting sensitive information stored on mobile devices, especially in the event of loss or theft. The sustained uptake of mobile laptops and devices has made this a major growth area for security services.

Developed once again at Alcatel-Lucent Bell Labs, the OmniAccess 3500 Nonstop Laptop Guardian addresses these concerns directly.

"We are talking about the first device of its kind," highlights Michel Emelianoff. "It is an always-on, 3G wireless platform that provides secure communications, security policy enforcement and 24/7 visibility on mobile laptop location and health: features which are indispensable for tracking, troubleshooting and management."

For the moment, aimed at enterprises’ existing laptop stocks, this is a product which is added to the machine. Over time however, Michel Emelianoff reveals that the technology –which is largely soft-ware based– will be embedded within the mobile device itself, simplifying management for IT departments.

A security range that fits the vision
The net effect of these solutions –which include a host of additional products not mentioned directly here– is a security range which is aligned with Alcatel-Lucent’s vision of the enterprise of the future, says Michel Emelianoff.

“As well as securing the network, we’ve developed solutions which match the push towards user-centric communications and greater mobility. Now, with solutions like the new generation of web service enablers, we are poised to follow the transformation that businesses will make as they enable business processes and connect people with knowledge."

And most importantly, he points out, doing this in a way that protects the organization and its customers against loss or misuse of confidential information.