Growing Need for Network Access Control
By IT-Observer Staff
Monday, 20 June 2005 15:10 EST
With network security in the spotlight due to recent data breaches, chief security officers and security executives highlight the need for tighter user access control and continued concern about security threats and patching, despite increased security budgets.
The results were revealed during seminar series conducted by Vernier Networks and Qualys, where top enterprise and government security executives were surveyed about their approaches to network security and budget trends.
The survey highlights the fact that 51 percent chief security officers (CSOs) relay on the “doorman” approach to internet network security, regulating network access by admitting users at the network edge. This approach gives users full, unmonitored access to the network and servers containing corporate data, customer information and other vital intellectual property, once they get past endpoint security, or the "doorman."
Key findings of the survey include: 36 percent rely on a "VIP Entrance" approach to network access, which identifies users and "accompanies" them around the network to ensure they do not access unauthorized areas. 13 percent admit to a "revolving door" approach -- with users coming on and off the network as they please. The results revealed that relying solely on a "doorman" approach, which does not monitor behavior once a user has accessed the network, is not proving sufficient. 62 percent of CSOs acknowledged that their organizations faced intrusions from internal sources -- those who were granted access by the "doorman."
88 percent of CSOs felt that tighter user access rights would improve overall network security -- either restricting network access or even authorizing network access but applying reactive security measures when intrusions occur. 52 percent of respondents do not currently track new systems that enter the network. However, 62 percent plan on implementing a system process to track systems entering the network within the next year.
69 percent of security execs said that worms, viruses and hackers are still their primary network security concern. The survey found that 49 percent patch externally facing servers within one week or less and 29 percent patch within two weeks.
"It has become clear that security around the network perimeter, while essential, is not sufficient to rid organizations from costly intrusions such as last week's attacks on credit card processing centers and commercial banks," said Simon Khalaf, president and CEO of Vernier Networks. "Our survey results indicate the immediate need to offer security within the fabric of the network and completely manage access to the network through pre-emptive, proactive and reactive security."
|
|
|
Latest News
eEye released integer overflow auditing tool
16.02.07 Vulnerability research company eEye Security has released a free security vulnerability auditing tool that helps spotting possible integer overflow vulnerabilities.
AES Password Manager 2.3 released
16.02.07 AES software has announced the availability of AES Password Manager 2,3, the latest version of their password management application that allows users automatically access password-protected web sites and email accounts.
IBM safeguards against Microsoft vulnerabilities
16.02.07 IBM’s security division, Internet Security Systems, offers protection from several critical vulnerabilities announced by Microsoft.
Firefox cookie-stealing vulnerability
15.02.07 A new zero-day vulnerability in Mozilla Firefox allows malicious web sites to forge authentication cookies for certain web sites.
Valentine’s Day: a powerful lure for spreading malware
09.02.07 As Valentine´s Day approaches, users should keep a wary eye on any romantic messages received by email, as many of them could contain malicious code.
Skype reads out your BIOS data
09.02.07 The Windows version of the Voice-over-IP software Skype reads and stores the BIOS and motherboard serial number of a user’s computer.
Utimaco SafeGuard Enterprise supports BitLocker
09.02.07 Utimaco has announced that its SafeGuard Enterprise now supports Windows Vista BitLocker drive encryption.
|
|
