- Bank Web sites full of security holes
- SCO Group: Its future is all used up
- Maligned feature being added to IPv6
- I returned my iPhone 3G after six days!
- VPNs: Six burning questions
News | Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:App Performance | On Demand Security | Networking Solution | SOA | Value of WDS
Matt Kesner, CIO at Silicon Valley law firm Fenwick & West, is proud to say his users are on the bleeding edge of the Web 2.0 revolution, using such tools as blogging, instant messaging, Web-based conferencing and social networking.
After all, they have to keep up with the high-tech clients they represent. Kesner also knows firsthand the security risks these immature technologies pose. Two years ago, despite having installed antivirus, antimalware and antispyware software on every user's machine, he found his network was the source of more than 50 exploits and more than 1,000 midlevel infections, including a few live "phone home" attacks that were using the firm's machines to send information out of the network. "That was disturbing to us. We thought we were protected all the way around. We even had firewalls on each user's machine," he says.
Kesner found the only way to combat such emerging threats was to use secure Web gateways, a new class of technology that sits between the Internet and the edge of the network. Secure Web gateways employ URL and malware filtering and application-level controls. They let companies control employees' access to and use of Web applications and sites based on corporate and regulatory compliance policies.
Peter Firstbrook, research director for Gartner's Information Security and Privacy Group, first coined the term "secure Web gateway" in 2006 to describe a multifunction, integrated approach to Web security for Web-based applications. "Most large enterprises today have some combination of network firewall, URL filter and proxy server to protect and manage Web traffic," he says. These are proving to be woefully inadequate in dealing with Web threats like those being generated by Web-borne malware, however: "Fewer than 15% of enterprises scan Web traffic for viruses," he says.
Rss FeedRss Feed
If the IT manager is knowledgeable regarding Cisco technology, he would have 2 options. Option 1 - Consult...- Anonymous
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask to prospective vendors to get the right endpoint solution.
Download the white paper.
Unauthorized applications: Taking back control
Employees installing and using unauthorized applications like IM, VoIP, games and peer-to-peer file-sharing applications cause many businesses serious concern. How do you control these applications?
Download the white paper.
Comment