DLP solutions are the first-last opportunity to correct a policy problem...and do so at the last frontier (the network perimeter). If some confidential data has been inadvertently exposed via an email, isn't the problem procedural and policy not a technology issue? Answer: Yes.
Yet, here we are today with countless DLP vendors pitching their respective solutions (starting at $25,000 dollars and going up from there) as a way to prevent data loss. It's laughable! People are trying to control human behavior with automated controls. It doesn't work. Throwing a lock on the Internet gateway just means that someone can carry data out of the network on a thumb drive or in a printout. It's not a technology issue, it's how the technology is used issue.
If users are taught about the risks and what they can do to minimize them, an organization will be vastly better off and more secure WITHOUT having to buy the expensive 1st last solutions to supposedly prevent data leaks.
|
Does Verizon's Voyager stack up to the iPhone? |
|
|
5 IT skills that won't boost your salary 
[1,407]
Women 4 times more likely than men to cough up personal info [589]
Japan's 10 funniest tech-related commercials [Videos] [407]
Throwing away a promo CD is "unauthorized distribution"? [1,265]
Adults too quick to dismiss educational video games [682]
Attack of the iPhone clones [Slideshow] [578]
10 things IT needs to know about AJAX [1,258]
This Year's 25 Geekiest 25th Anniversaries [Slideshow] [409]
|
|
The Holes In A Network's Security
Companies seem to have more holes or potential leaks than all the dikes in Holland. Worrisome, especially given the fact that "everyone" has a smart phone and is IMing. Common sense is the first solution. Unfortunately, not everyone......
Plug the Holes???
What about the human factor? You can patch, close ports, set a policy, etc., but if the education hasn't been done for everyone accessing the network, than your parameter is still Swiss cheese.
I'm curious why you the problems with WLAN connection (or other open connection protocols) haven't come up more. Not man in the middle per se, rather devices authenticating themselves to the network, open the door for packet drops onto the device. Big problem here.
A company called NCP engineering has a VPN client that makes any network authenticate itself to the device (no packet transfer at all). They call this 'friendly net detection'. I don't think anyone else does this.
Post new comment