* Risks associated with linking from a corporate intranet to the outside world A reader from South Africa asked me about the security implications of having hyperlinks on a company intranet that point to (a) an Internet server owned by the same company or (b) to a server controlled by some other organization.In the following discussion, I focus on organizations such as government agencies and businesses but explicitly exclude academic institutions, which have their own peculiar policies related to principles of academic freedom.Both questions revolve around crossing domains. The Computer Desktop Encyclopedia defines a network domain as “all resources under the control of a single computer system.”Pointing from an intranet server to a Internet server, even if under the control of the same organization, increases the risk of the following security breaches: * Integrity: risk that the contents of a document in an external link will change in ways that affect the functionality of the intranet page. What if an external agent (another department in the corporation, say) unilaterally changes the content of a page on which the intranet users have been depending? It may be difficult for the owner of the original document on an Internet server to keep track of all the users expecting to see specific content on a page accessed through the intranet servers.* Availability: risk that a link for an important document will go bad. When I plan the links for curriculum pages on a teaching extranet, all _required_ readings point to materials residing on the extranet servers. Although this policy means that we must obtain permissions from all the copyright holders and sometimes pay royalties, it’s too great a risk to depend on URLs out of our control. In contrast, _optional_ readings usually do use external links, but we check every one of those before each repetition of a course module goes live for the next group of students. In the next article of three, I’ll discuss a related topic: pointing to external non-organizational Web sites from a corporate _Internet_ server. Related content news End of road for VMware’s end-user computing and security units: Broadcom Broadcom is refocusing VMWare on creating private and hybrid cloud environments for large enterprises and divesting its non-core assets. By Sam Reynolds Dec 08, 2023 3 mins Mergers and Acquisitions news analysis IBM cloud service aims to deliver secure, multicloud connectivity IBM Hybrid Cloud Mesh is a multicloud networking service that includes IT discovery, security, monitoring and traffic-engineering capabilities. By Michael Cooney Dec 07, 2023 3 mins Network Security Cloud Computing Networking news Gartner: Just 12% of IT infrastructure pros outpace CIO expectations Budget constraints, security concerns, and lack of talent can hamstring infrastructure and operations (I&O) professionals. By Denise Dubie Dec 07, 2023 4 mins Network Security Data Center Industry feature Data centers unprepared for new European energy efficiency regulations Regulatory pressure is driving IT teams to invest in more efficient servers and storage and improve their data-center reporting capabilities. By Maria Korolov Dec 07, 2023 7 mins Enterprise Storage Green IT Servers Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe