Access "Should enterprises give in to IT consumerization at the expense of security?"
This article is part of the September 2010 issue of 2010 Security Readers' Choice Awards
Point: Marcus Ranum Some companies are apparently adopting a policy of allowing employees to do their computing work on personal devices -- a trend that, I suspect, is a result of mainstream IT departments not being quite sure how to accommodate their growing user-base of Apple Computer addicts. Our industry appears to be of two minds about this topic: on one hand, we're worried about data leakage; and on the other, we take steps to make said leakage as easy as possible. I was on a conference call last week, in which a senior technical executive asked me if I had any suggestions for what kind of data leakage system could be put between their Exchange server and their BlackBerry users to detect and block attempts to export sensitive data. As our conversation continued, he said, "Of course, these are corporate-issued BlackBerries. So at least we can do remote-wipe in case of loss." I was struck dumb for a second, trying to sort through the inherent contradiction in simultaneously giving employees a tool for exporting data from the safety of the corporate WAN, ... Access >>>
Premium Content for Free.
2010 Information Security magazine Readers' Choice Awards
For the fifth consecutive year, Information Security readers voted to determine the best security products. Nearly 1,500 voters participated this year, rating products in 14 different categories.
PCI update could mean clarity or confusion
What you can expect from this fall's update to the Payment Card Industry Data Security Standard.
- 2010 Information Security magazine Readers' Choice Awards
Web 2.0 security threats and how to defend against them
by David Sherry
The collaborative nature of Web 2.0 introduces myriad threats to data that must be proactively countered.
Internet privacy tools only go so far
Tools help protect privacy but safeguarding personal data in the age of Google and Facebook is getting harder.
- Web 2.0 security threats and how to defend against them by David Sherry
Intel acquision of McAfee a head-scratcher
Embedding security in hardware isn't new, but is it worth an $8 billion investment? Time will tell on the Intel-McAfee acquisition.
How to develop a data breach response strategy
by Kim Getgen and John W. Woods
Targeted attacks on corporations and their crown jewels have become routine. Companies need to be prepared.
Should enterprises give in to IT consumerization at the expense of security?
Bruce Schneier and Marcus Ranum debate the risks associated with employees using personal computing devices.
- Intel acquision of McAfee a head-scratcher
More Premium Content Accessible For Free
Compliance and risk modeling
You can fight compliance or embrace it, but one way or the other, you can’t escape it. Increasingly, smart organizations are not just accepting ...
Essentials: Threat detection
Antivirus and intrusion prevention aren’t the threat detection stalwarts they used to be. With mobile endpoints and new attack dynamics, enterprises ...
Managing identities in hybrid worlds
The world in which successful IAM programs must be implemented is increasingly complex, a mix of legacy on-premise IAM infrastructures, cloud-based ...