Home > Ask the Security Experts > Expert Archive: Security Management Questions & Answers > Can watching online videos present enterprise security risks?
Ask The Security Expert: Questions & Answers
EMAIL THIS

Can watching online videos present enterprise security risks?

Mike Rothman, past SearchSecurity.com expert EXPERT RESPONSE FROM: Mike Rothman, past SearchSecurity.com expert

Pose a Question
Other Security Categories
Meet all Security Experts
Become an Expert for this site


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


>
QUESTION POSED ON: 03 March 2007
Can watching videos online and listening to Internet radio present any serious security problems? If so, are there any recommendations on how to approach the problem from a policy standpoint and from a user standpoint?

>
Internet video and radio present no additional security issues, besides the inherent risks of navigating with a browser. There is nothing in the various streaming protocols that create additional worries. That being said, many organizations have policies governing the use of Internet video and radio for productivity reasons.

Many Web filtering gateways can block these applications. As an additional layer of precaution, I also recommend application control (white lists) to be integrated into the client security layer to make sure that malware can't execute if a user navigates to a bad site.

For more information:

  • In this installment of our Risk Management Guide, contributor Shon Harris explains what risk is and clarifies the differences between risk and vulnerability management.
  • Identity management and access control expert Joel Dubin reviews the processes involved when conducting a risk assessment.


    • BROWSE BY TAG
    Expert Archive: Security Management,   Information Security Policies, Procedures and Guidelines,   Information Security Management,   Application and Platform Security,   Web Security Tools and Best Practices,   Web Server Threats and Countermeasures,   Web Application and Web 2.0 Threats,   VIEW ALL TAGS

    Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



    RELATED CONTENT
    Expert Archive: Security Management
    What is the GISP certification and how does it compare to the CISSP certification?
    Using a QSA to write up a PCI DSS report on compliance (ROC)
    How can gap analysis be applied to the security SDLC?
    Comparing cheap security products and appliances to costly appliances
    What are some tips on protecting my security budget in a poor economy?
    What value do research firms provide to their subscribing enterprises?
    What certificate offers the best ROI for an IT project manager?
    Is insider activity or outsider activity a bigger enterprise threat?
    How does information security prevent fraud in the enterprise?
    Differences between an SAS 70 data center and a Tier III data center

    Information Security Policies, Procedures and Guidelines
    Essential guide: Pandemic planning for H1N1
    Whitelists, SaaS modify traditional security, tackle flaws
    Melissa Hathaway urges more cooperation, government attention to cybersecurity
    Reuters: Obama ready to select cyber security czar
    How a corporate Twitter policy can combat social network threats
    Should enterprises be concerned with Twitter in the workplace?
    Information security management hype: Debunking best practices
    Data breach avoidance begins with security basics, panel says
    Expert: Information security spending often restricts innovation
    GAO report cites government weaknesses, data leakage

    Web Server Threats and Countermeasures
    VeriSign extends DDoS attack protection service
    Microsoft issues IIS FTP advisory, exploit code circulates
    Panda reports fast-spreading rogueware antivirus fraud rakes in millions
    Oracle issues quarterly patches, fixes database flaws
    Latest DDoS attacks extremely unsophisticated, experts say
    Stolen FTP credentials likely in massive website attacks
    Microsoft warns of IIS zero-day vulnerability
    How to find and stop automated SQL injection attacks
    How to spot attacks through Apache Web server log analysis
    Symantec acquires Mi5 Networks, bolsters Web security

    RELATED GLOSSARY TERMS
    Terms from Whatis.com − the technology online dictionary
    defense in depth  (SearchSecurity.com)
    non-disclosure agreement  (SearchSecurity.com)
    security policy  (SearchSecurity.com)

    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary



    Search and Browse the Expert Answer Center
    Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
    Browse our Expert Advice



    Find Security Solutions for Your Business
    TechTarget Security Media
    Information Security View this month\\'s issue and subscribe today.
    Information Security Decisions Apply online for free conference admission.
    		SearchSecurity.com
    HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
    SEARCH :     Site Index Powered by: Search Powered by Google

    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Site Map




    All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts