InfoEdge Logo
Offering Select IT And Business Management Research
research@infoedge.com
800.544.7337 | 617.969.9080
Home Page About Us Contact | Questions Shopping Cart
Recent Reports Information Centers Free Research IT Business News and Articles CIO Strategy Center Browse Categories
Related Reports
Rich Web Applications: The Business Benefits of Web-enabled Application Development
This report reviews the current state of Web development technology, and explores the alternatives for architectures, models, and strategies.
SOA Platforms: Software Infrastructure Requirements for Successful SOA Deployments
This report provides information and gives guidance on the selection of software to support the Service Oriented Architecture (SOA) runtime environment.
2007 Quarterly Hot Technical Skills and Certifications Pay Index
The most comprehensive technical skills premium pay research in the world - enabling employers to make adjustments to salaries and bonuses for the presence of 290 vital IT skills and certifications.
IT Spending, Staffing & Technology Trends: ROI and TCO Trends
Discover which technologies are actually delivering ROI for real businesses.

IT Business Insider - Home

Infrastructure

Are Remote Users Threatening Your Security?

Are Remote Users Threatening Your Security? (continued)

"Part of the problem is in the number of remote access methods and the sloppiness of the way things are managed,'' says Oltsik. "Companies tend to have multiple ways they allow remote workers to get onto their systems."

Those workers may have user accounts and laptops they just don't manage properly. IT needs to get a better handle on what is on an employee's laptop. "Managing it is as important as providing the access," says Oltsik. "IT doesn't look at remote access as an end-to-end solution but as a point requirement, and doesn't integrate it into security as a whole."

Both Oltsik and Howard recommend deploying an IDS (intrusion detection system) and/or an IPS (intrusion prevention system), which both examine incoming network traffic and block it or alert a network administrator if the system sees something suspicious.

Companies make an incorrect assumption that once someone is given a remote access account they have the appropriate credentials. But Oltsik says no one accessing the network should be trusted until the proper steps have been taken to ensure they do not pose a security threat. Strong auditing and reporting is also lacking and that's a function of having too many different accounts in too many places, making it difficult to get an adequate big picture, the experts say. A classic example is when a female employee gets married and changes her name -- her old account is then deleted in one place on the network but not another. If someone knows about that vulnerability, they can exploit it. (article continues)


<< Previous Page

Next Page >>
Geography Specific | Advanced Technologies | Industry Verticals | Executive Management | Information Technology | Human Resources | Telecommunications | Sales And Marketing | Finance | Hardware | Software | Web | Outsourcing | Top IT Priorities
home   |     site map   |     about us   |     privacy statement   |     research providers   |     contact us   |     categories

Entire contents