- +
Blog: Let Your APIs Go Free 03/10/2007 09:48:17
Apple's delivery last week of an iPhone patch that disabled unlocked phones along with a bunch of third party software got me thinking about how IT departments could innovate faster.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Optimized Back-up and Recovery for VMWare for VMWare Infrastructure with EMC Avamar
Did you GET the memo? Getting you from Web 1.0 to Web 2.0 Security
Understanding Email Marketing: A Guide for SMBs
Solve Exchange Storage Problems Once and For All: A New Approach without Stubs or Links
Wireless LANs: Is my enterprise at risk?
Mimosa™ NearPoint™ for Microsoft® Exchange Server: Email Archiving 101
Choices in Storage Architecture for Oracle Environments
Revolutionising Back-up and Recovery
Zones provide focussed content from Computerworld and leading technology partners.Newsletter Subscription
This month marks two years of "In Security." Over the past year, some of my more popular columns have dealt with data aggregation and theft, the limits of risk management, getting along with human resources and how to spot and handle rogue security staff, encroachments on personal privacy, and the humor we find in the nonsensical things we hear from security consultants and the consulted. Sometimes it's the laugh of recognition; sometimes it's the laugh right before everyone looks away nervously and changes the subject. In either case, it's worth taking a look back before considering what's next.
Get smarter
Progress happens -- though sometimes in slow motion. In response to last week's column about phishing within organizations, Rex Warren, a colleague and partner at Leviathan Security, responded with a related experience where people in big organizations sometimes forget that sometimes they need to prove their identity. He received a call recently that went something like this:
Caller: "You owe money, I'll take your account number."
Rex: "How do I know you're not a criminal?"
Caller: "I'm not a criminal."
Rex: "A good criminal wouldn't acknowledge being a criminal. In fact a dumb one wouldn't either."
Caller: "I know your 'secret' authentication information."
Rex: "That proves it's me not you; How do I know you didn't steal that information?"
Caller: I'm not a criminal.
Rex: We've been over that.
How would you make that system work, exactly? Think less tech and more do-unto-others. While generally impressed with my own credit union's variable risk-based identification and authentication processes -- this past year they started asking more authentication questions for transfers than for lower-risk balance inquires, for example -- it would be nice to receive a periodic mailing with a list of authenticators or secret questions I could ask them . This would be useful in the unusual case where they contact me about errors, suspected fraud or other problems. The technology is available; maybe we'll see more implementation next year.
Continuing the thinking-trumps-technology theme, more and more enlightened managers and educators realized over the past year that filtering software pushed by the likes of SurfControl and Websense doesn't work. It's not because the technology can't pick out words or URLs, but because employees and children intent on pursuing blocked content usually can find a way to retrieve it.
For example, Google arguably performs the foremost and broadest research into filtering. Yet the flexibility provided by search and proxy tools to bypass other filtering systems easily surpasses the sophistication of their own "SafeSearch" technology. Technology doesn't fix social and behavior problems, and filtering is eventually destined to head the way of prohibition, dance-hall bans, and the V-Chip.
Social education taking the place of mindless tools in both the workplace and schools? That's a positive development. Just as the Ron Popeil "set-it-and-forget-it" approach doesn't provide gourmet meals, the path to professionalism at work and critical thinking in school is best served by clear rules, trust and reasonable monitoring -- not roadblocks. The recent Virginia state foray into meaningful Net education still smacks of 50's educational films on the dangers of social diseases and fast driving, but helping the kids think is a giant step in the right direction.
Computerworld Member Login
Prioritizing Services with IT Service Management (ITSM)
Computerworld Live Webinar
Wednesday 20th, August 2008
11:00am EST (Sydney, Australia)
To be repeated on:
Thursday 4th, September 2008
11:00am EST (Sydney Australia)
Sign up and receive a free copy of The Forrester WaveTM Service Desk Management Tools, Q2 2008 at the conclusion of the Webinar.
Attend and discover:
- How to deliver value to your business through ITSM
- Best practice ITSM implementation
- Why emphasis is changing from optimizing IT management processes to better servicing customers and demonstrating real dollar value
- If service-oriented ITSM is best for your business
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Viva la Verticals! Key to Vendor Growth is Through Vertical Market Opportunities, Says IDC 2008-09-05 11:05:00+10
F-Secure delivers fastest protection in the online world 2008-09-04 16:50:00+10
NETGEAR expands ProSafe team as business-class products take off in SME market 2008-09-04 16:27:00+10
Rogue security apps dominate Fortinet's Aug 2008 IT threat report 2008-09-04 16:00:00+10
Adaptec Intelligent Power Management Reduces Storage Power Consumption Up to 70 Percent 2008-09-04 11:28:00+10
Wireless LANs: Is my enterprise at risk?
Achieve an overall understanding of the risks associated with wireless LANs. Discover their inherent properties, as well as what makes them different from wired networks. Read on to uncover a list of recently published articles on real-life breaches and incidents illustrating the need for proactive measures to mitigate wireless security risks.
