home
NEWS       BLOGS       FORUMS       NEWSLETTERS       RESEARCH       EVENTS       DIGITAL LIBRARY       CAREERS  
Network Computing Network Computing Powered by InformationWeek Business Technology Network

IMMERSE YOURSELF:

SOA

  |

Data Center

  |

802.11n

  |

Data Privacy

  |
APO  |

Virtualization

  |

NAC

  |

Security

  |

Network Mgmt

  |

Enterprise Apps

  |

Storage & Servers



Security
R E V I E W  
Defense Starts Here

  February 20, 2003
  By Mike DeMaria


>> continued from previous page

Beyond the Initial Expense

TOC Issue TOC
Printer Print full article
Printer Print this page
Printer Download as PDF
E-Mail E-Mail this URL
Discuss Discuss this article
flame author Flame the author
 
  In this article
arrow
Introduction
arrow
Measuring Protection
arrow
Sygate Secure Enterprise 3.0
arrow
Other Products Reviewed
arrow
Executive Summary
arrow
Beyond the Initial Expense
arrow
The Layering Effect
arrow
Report Card

Firewall client licenses average about $50 per seat. Cut the free soda program for a month and you'll find the funds to pay for it. From a pure operational standpoint, however, unless you are constantly repairing hacked machines, rolling out desktop firewalls will probably yield a negative return. But, remember, you're not just interested in protecting mobile users against Internet script kiddies. Intellectual property theft is costly, embarrassing and could put you out of business. The most common losses were from R&D at $404,375 loss per incident, and financial data at $356,035 per incident, according to a report by ASIS and PricewaterhouseCoopers. Preventing one loss may pay for the entire program.

Of course, the initial cost is just one part of the story. Maintenance is time-consuming but necessary. To maintain policy files, for example, you must keep a list of applications and their DLL checksums, and a separate list of people who may access that information. Furthermore, you must track users' needs, as well as their whereabouts within the company. Products that tie into existing directory services (such as Active Directory or LDAP) for user/group configuration can help reduce this cost. However, you must also keep updating executables' signatures when you upgrade. The desktop firewall won't let IE 6.0 launch if it contains only IE 5.0 signatures, for instance.

Helpdesk calls are bound to bog you down once you roll out a desktop firewall. Some users will be locked out of critical applications for a few days. Others may want to use forbidden programs, and you'll have to convince them that the security policy is more important than their individual wants. And heaven forbid you accidentally block DNS or DHCP.

Letting users see the attack report in real time may also be problematic, especially since many of them don't know what they're seeing. For example, ISS RealSecure showed overnight some 8,000 attempted attacks from one of our SNMP servers. These attacks, however, were harmless, generic scans that require no action, though they'll light up a desktop firewall on the Internet like matches dipped in gasoline. Denying users the ability to see scans and minor attacks will save your helpdesk a few phone calls.


start top   Executive Summary The Layering Effect 





Ready to take that job and shove it?

Function:

Keyword(s):

State:
SPONSOR
RECENT JOB POSTINGS
CAREER NEWS
Go beyond Google and get vertical. These specialized search sites will help you find the business information you need -- fast.

Ari Balogh was named to the post of chief technology officer as the companys for a "realignment" of employees.










InformationWeek U.S. IT Salary Survey 2008
Salaries for business technology professionals are falling. Here's what you need to know in order to make good hiring decisions and personal career choices. Download Today
 
ROLLING RIGHT ALONG
Follow key Network Computing Reviews from conception to completion. This Week: Holistic APM.



Network Computing Reports Emerging Enterprise Podcast Series: Secrets to Success








TechSearch


Microsite of the Week


Powerful Information at Your Fingertips



InformationWeek Business Technology Network
InformationWeekInformationWeek 500InformationWeek 500 ConferenceInformationWeek AnalyticsInformationWeek CIO
InformationWeek EventsInformationWeek ReportsInformationWeek MagazinebMightyByte and SwitchDark Reading
Digital LibraryIntelligent EnterpriseInternet EvolutionNetwork ComputingNo JitterPlug Into The Cloud
space
Techweb Events Network
InteropVoiceConWeb 2.0 ExpoWeb 2.0 SummitEnterprise 2.0 ConferenceMobile Business ExpoSoftware ConferenceCSI - Computer Security Institute
Black HatGTECEnergy CampMashup CampStartup Camp
space
Light Reading Communications Network
Light ReadingLight Reading EuropeUnstrungLight Reading's Cable Digital NewsConstantinopleInternet EvolutionPyramid Research
Heavy ReadingLight Reading Live!Light Reading InsiderEthernet ExpoOptical ExpoTeleco TVTower Technology Summit
space
Financial Technology Network
Advanced TradingBank Systems & TechnologyInsurance & TechnologyWall Street & TechnologyAccelerating Wall StreetBank Systems & Technology Executive SummitBuyside Trading SummitInsurance & Technology Executive Summit
space
Microsoft Technology Network
MSDN MagazineTechNetThe Architecture Journal
space


App Infrastructure   |   Messaging & Collaboration   |   Network & Systems Mgmt   |   Network Infrastructure   |   Security  |   Storage & Servers   |   Wireless   |   Enterprise Apps
About Us  |  Contact Us  |  Site Map  |  Technology Marketing Solutions  |  Advertising Contacts  |   Briefing Centers
Copyright © 2009  United Business Media LLC  |  Privacy Statement  |  Terms of Service  |  Your California Privacy Rights