Principal Services
Networking
Computer Hardware, Software & Training
Computer & Accountancy Consulting
Management Procedures
Process Re-engineering
Web Design & Maintenance
Management & Office Information Systems
Information & Communications Technology |
Just what is it?
USB-connected devices threaten corporate information security.
This article talks about the importance of preventing information leakage and how it might be done. This is all about securing your companies valuable and confidential information assets.
The Issue
There are only two real ways into a corporate network - in through the external firewall and in through the front door.
Organisations have spent a lot of time and money on sophisticated firewalls and other systems to prevent access from outside the business, yet just about anyone can walk into the office, plug in a USB memory stick or another mass storage device the size of the average keychain, and take out or put in over 2 GB of data.
USB and mobile device usage has become a natural extension of company networks. The proliferation of these devices in their multitude of forms, the staggering storage capacity they offer and the rapidly dropping cost of such hardware have introduced a whole new set of security risks into the corporate equation.
The Instruments of the Attack
Security risks arise because iPods and other music players, USB memory sticks, personal organisers and PDAs, mobile phones, digital dictation machines and cameras, can connect undetected to corporate networks. These devices can download or upload gigabytes of data in a matter of seconds and introduce viruses and malware, steal or replace data and constitute a real and present danger to the future of the business.
The Back Door is Secure
At the moment, companies are locking the back door with firewalls and other technologies.
These products come in a huge range of formats: appliances you just plug in, software, sometimes incorporated in the operating system or powerful and flexible systems, a single computer to protect your computers.
These devices may be tuned to allow very restricted access or to foster a more open door approach, depending on the business’ needs. They can be as simple as plugging in and turning on, or require a considerable amount of effort to tune it exactly to your requirements. Some even assist with the filtering of e-mail content and provide some gateway level spam protection.
The Front Door is Wide Open
The front door is the interface within the business. This is made up of laptops, workstations, PDAs, mobile phones, memory sticks, MP3 players and the like. Virtually anything that can connect to the network, or to any device which connects to a network peripheral, needs to be watched. We are watching the back door so carefully while leaving the front door wide open, with people coming and going with uncontrolled, removable devices.
Whilst this technology is convenient and has many applications and benefits, there are also the inherent security risks associated with mobile devices. The point of least resistance for corporate networks is typically the end point devices; workstations, laptops, PDAs and the like.
The business risks include:
• Information leakage
• Loss of intellectual property
• Increased security vulnerability
• Data theft
• Malicious code
• Increasing support costs
Let’s close the Door
Now there is a new range of products which provide a similar level of security for the front door as that most of us have implemented for the back door.
A range of network management and security software solutions has been developed that extends your security blanket to mobile devices.
One product delivers an integrated removable media security solution, enabling you to preclude the use of USB memory sticks, for instance, by anybody but a select group within the business. Your senior staff and IT may be allowed to use them, but others will simply be told this facility is not available to them.
• The Discover & Audit module, audits all hardware and file transaction details of connecting devices to track who might have copied or loaded which files.
• The Device & File Security module creates policy rules regarding access to devices and file types. This is very granular, allowing quite complex matrices to be developed to meet the most demanding needs.
A simpler option controls access to PC ports, device types and specific models.
For more information speak to David Greenhough or David Estcourt Hughes at Tripos IT, which is now an authorised reseller of Lync Software, or visit www.lyncsoftware.com.
(Article concept contributed by Lync Software)
Changes to your subscription
Removal: If you would like to be removed from our mailing list, please send an e-mail to the address below with UNSUBSCRIBE in the subject line.
Additional subscriptions:
If you would like our eNewsletter to be sent to others in your enterprise, please send an e-mail to the address below with ADDITIONAL SUBSCRIPTIONS in the subject line and the recipients’ e-mail addresses contained in the body of the message.
support@tripos.com.au
Of course, you could call us and arrange any change you would like.
Thank you.
Stewart Rankin Pty Ltd – ACN 007 972 901 & DL & LD Greenhough trading as
TRIPOS IT
All Newsletters
|
Staff
David Estcourt Hughes - Consultant
David Greenhough - Consultant
David Kenyon -
Support
Dean Jarman - Novell CNE
Doug Smith -
Windows and Linux specialist
Scott Ferris -
Technician
Alison Campbell - Microsoft application specialist
STOP PRESS
Tripos IT is planning a seminar to discuss Information Leakage in its new offices at Unit 8, 198 Greenhill Road, EASTWOOD.
The event will begin at 9:15am and run for around 1½ hours.
We will be inviting the Lync Software sales and development people to attend and present their product, as well as answering questions.
We would appreciate it if you would express your interest in attending this event by faxing, on 8272 7344, or e-mailing, to support@tripos.com.au, a brief note to that effect.
We will ensure you are advised when this event is to be held.
|