Skip Links

DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Security

Videos

rssRss Feed
Get instant email notification when white papers, webcasts, executive guides are added to our library.  Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.
Audio

Crackin' the Kraken bot. Listen now!

Network World's Newsmaker of the Week

Wireless dangers at airports. Listen now!

Network World Panorama

Additional Resources

RSS

FEATURED WHITEPAPERS

Endpoint Security: Data Protection for IT, Freedom for Laptop Users Absolute Software

The movement towards laptop computers has fueled an unprecedented number of data breaches. For IT and Information Security, encryption and training has proven ineffective against careless users and insider threats. This paper discusses these limitations and explains how endpoint security allows remote deletion of sensitive data, tracking of computers outside the network and the physical recovery of missing computers. Learn how you can ensure mobile data protection regardless of end-user interference.

RSS

FEATURED REPORTS

Executive Guide: Storage Heats Up HP

Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.

RSS

FEATURED WEBCASTS

Learn how to Create a More Efficient Virtualized Data Center Novell

Find out how you can consolidate Windows workloads and create a more efficient virtualized data center in this informative webcast, "Reduce Complexity and Cost - Windows Server Consolidation with Virtualization." Six concise webcast modules are available for your viewing. Watch them all consecutively or only the topics that interest you. The modules cover performance, user case studies, enterprise-level support, managing windows workloads, setup and configuration and the future of virtualization. Learn more today. Register below to learn more and be entered to win an Archos 605 Portable Media Player.

IT Buyer's Guides

View All Buyer's Guides

Free Newsletters

Sign up and receive the latest news, reviews and trends on your favorite technology topics

Save The Date!
What They Are Saying

So the line of defence remains is "PIN NUMBER" Wowww what a strong security ? HSBC , invest some money...- Anonymous

Join the Discussion

U.S. Bank suffers Web 2.0 security headaches

iPhones and smartphones invade the security perimeter
By Jon Brodkin , Network World , 04/30/2008
  • Social Web 
  • Email 
  • Feedback 
  • Close

LAS VEGAS -- It used to be easy for U.S. Bank to determine which users and systems could be trusted, and which should be viewed with suspicion. Then along came Web 2.0

"We always said outside the corporation was untrusted and inside the corporation was trusted territory," U.S. Bank CTO Gary Hodge said in a keynote panel discussion on Web 2.0 security at Interop Las Vegas Wednesday. "Web 2.0 has changed all that. We've had to expose the internal workings of the corporation. There's a whole rash of new devices coming out to enable people to compute when they want to, with the iPhones and smartphones."

At the sixth-largest bank in the country, Hodge is worried. While it took a decade or more to gain a "level of hygiene" in PCs, with virus scanning and other security tools, he thinks smartphone developers haven't paid enough attention to security. (Compare security products.

"I don't think most people have thought about their smartphone in that context," he said. "There's probably a whole rash of vulnerabilities that will show up in the next few years, and we're not sure what they're going to look like."

Hodge was joined by Gary Dobbins, director of information security at the University of Notre Dame, and two officials from the vendor Secure Computing

Secure Computing sees more than 10,000 malware samples a day, and they are growing in sophistication as organized crime and terrorists utilize the Web for malicious purposes, said Dmitri Alperovitch, principal research scientist for Secure Computing.

"The potential from a criminal perspective has expanded dramatically in the last several years," Alperovitch said. "It's no longer about someone breaking into a computer and hacking your Web site. It's much, much more serious."

There are two main problems, according to Alperovitch. Content in the Web 2.0 world can be produced by any individual who comes to your Web page, particularly social networking sites. Secondly, the browser is now the operating system, providing access to instant messaging, Web conferencing, telephony and any other number of services. The security perimeter is shrinking, Alperovitch said.

1 | 2 |  Next >
Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.
First Name
Last Name
E-mail
Zip Code