[funsec] de-perimeterisation

[Larry Seltzer]

>>Energy group BP has shifted thousands of its employees off its LAN in an
attempt to repel organised cyber criminals. 
>> http://software.silicon.com/security/0,39024655,39156608,00.htm 

I think this has to be missing some critical information, like how the
notebooks access company information. If they're VPNing in, for example, is
that really any better than just putting them on the LAN and using NAC to
enforce strong client security mechanisms? Actually, forget the VPN stuff;
isn't NAC the answer to the concerns expressed in this article?