January 22nd, 2008 at 05:51pm
Under Security
Encryption capabilities to target leaks at the network, endpoint and mobile device-levels.
McAfee has baked encryption technology into its latest data security product in a bid to protect mobile devices, endpoints and the network from data leaks.
Dubbed McAfee Total Protection for Data, the product is the Santa Clara, Calif.-based security vendor’s answer to compliance regulations requiring business secure customer data.
It is an amalgamation of a number of McAfee products, including the company’s Endpoint Encryption, Device Control, DLP Host and DLP Network software. Though each component adds its own layer of security and can be purchased separately, with the inclusion of encryption technology, McAfee officials hope they can help customers address a key element of data loss prevention – the case of the missing device.
“One in two data loss incidents we saw in 2007 had to do with lost media or [a] lost laptop, yet there aren’t that many solutions available that can protect against that as well as a number of other issues,” said Vimal Solanki, vice president of solution and competitive marketing at McAfee. “(The) endpoint encryption will essentially encrypt everything on a laptop, server or mobile device.”
The endpoint encryption is meant to take McAfee’s data loss prevention strategy a step beyond those of its rivals. The technology came from McAfee’s purchase of SafeBoot in October, Solanki said. SafeBoot specialized in mobile data protection, and at the time of the announcement, McAfee CEO David DeWalt made the point that the purchase would give his company key capabilities in encryption, port control and device control.
But as the name suggests, Total Protection for Data does not stop at encryption. McAfee officials said they are looking to protect data across all communication channels, from e-mail and Web mail to instant messaging and P2P file-sharing.
“Imagine having to subscribe to ten different security monitoring services for your house,” Solanki said. “One guy monitors your door lock, another guy monitors your windows, a third guy monitors your motion sensors. It’s just not practical. That’s exactly where the corporations are today as far as the data loss problems. We are looking at the overall data protection.”
By admin
January 18th, 2008 at 08:57pm
Under Security
Picking the right security software solution may seem a daunting task, but it isn’t the only thing you should be doing to keep your data and infrastructure safe. These ten tips to increase your IT security should be on the top of your to-do list every day—or it won’t matter what security software you deploy in your enterpri.Viruses, Trojans, spyware, rootkits, keyloggers, code injections, phishing, DoS—the list of security threats is long—and seems to get longer with every news story about the newest zero-day attack or latest and more powerful malware. While it’s important to be sure your systems are protected with the best anti-virus, anti-spyware, anti-spam, anti-everything solution, this is only half the security battle and won’t protect your IT systems from what’s arguably the biggest security hole in your enterprise—your users.
Regardless of your security software, the ten tips outlined below are things you should be doing in your enterprise today, right now, right this minute. If you’re not doing everything on this list, chances are you’ll suffer from a security loss. And it’s not a matter of if you’ll suffer a loss, but more of a question of when. Check our list, check it again, and then get busy. You have a lot to protect.
1. Passwords—require them! And make them strong!
Passwords are a pain and while many organizations require them, they have very simple, even lax rules for implementing a password strategy. Besides requiring your users to use passwords, there are two other things you should require of them: password ageing and strong passwords.
Password ageing is essential to minimize the chances of someone else discovering and using a password that may be shared, for example to help a co-worker access the corporate network. A strong password (requiring a mix of letters, numbers, and characters) minimizes the chances of someone obtaining a password through a social engineering exercise. (”I normally use my kid’s name for my password. Do you?”)
2. Locks—use them!
Data security is almost useless if someone can easily walk away with the device where the data resides and have all the time in the world to try and access the data on the device. Locked server rooms, locking desktops and laptops to the desk, and in general securing physical IT assets, is often overlooked, especially in branch offices and small-medium businesses.
3. Inactivity monitors—implement them!
When users walk away from their computers they are vulnerable. Anyone can walk up and access all the information on that user’s computer just as if they were that user. Computers should be set to lock themselves after the shortest period of inactivity that the user is willing to tolerate. If some users find it tedious to reenter their passwords after short periods of inactivity, consider a biometric solution which frees the user from having to retype their passwords every time to unlock the computer.
4. Security policy—have one!
If your company doesn’t have a formal security policy around the use of IT assets, you’re behind the times. You need to develop security policies that balance the productivity of your users with the need to keep IT assets and data safe. And once you have a policy, be sure to set up training for all your users and make security training a required part of every new employee orientation.
5. Administrators—get rid of all but the real ones!
Many companies grant administrative rights to their users to install specific applications themselves. Don’t let the user do your job! Not only does user-installed software create potential security problems, by relying on the user to do IT’s job, you won’t get a true sense of the IT resources your organization needs.
6. Updates—do at least the critical ones!
Many security problems stem from a flaw that a hacker finds in a component of the operating system. You should make sure you sign up to receive the latest critical updates which close these potential exploits. Some would argue that indiscriminately pushing updates down to users without seeing the effect they would have on the user’s ability to run their most-needed applications isn’t wise. But if the user is running standard desktop productivity software, chances are the critical updates won’t break anything.
7. Backup—what, you’re not?
Imaging a user’s disk saves all their important data in the event of a disaster and saves you the trouble of having to rebuild their machine in the event of a crash or even system theft. This one is difficult, especially with a mobile workforce, so you’ll have to work closely with your users to make this a reality.
8. Communicate—constantly!
Getting the word out about security to your users is one thing. Constantly reminding them of the importance of perpetual security is something else entirely. If you show your users you’re tired of security, they will tire as well. Make communicating about security a regular habit and people will respect the security policies you have in place.
9. Wireless access points—close them!
With the ubiquity of wireless access and the ease by which it can be deployed, it’s easy to overlook these access points as a security hole. Set up some type of wired-equivalent privacy (WEP) on these access points so passers-by or visitors can’t easily hop on your network
10. IT Audits—when was the last time you checked?
Accounting for all your equipment and how its setup is a time-consuming and difficult job. But if you do it on a regular basis, not only will you catch security problems early, you’ll also keep your users on their toes, which further enhances security.
And the bonus tip: review this list and do it all over again. Your IT infrastructure is constantly changing to meet the needs of your users and it’s during these changes that one of the items on this list can slip through the cracks
By admin