Securing electronic messaging. (Software Intelligence).The threats and problems posed by email in large and complex organisations is of a different type and scale of magnitude from the email problems which such organisations first solved with an email 'point product' some years previously. When organisations encounter their first problems with managing e-policy based email, they typically buy such a product to solve that problem. As the use of email grows in both volume and sophistication so·phis·ti·cate v. so·phis·ti·cat·ed, so·phis·ti·cat·ing, so·phis·ti·cates v.tr. 1. To cause to become less natural, especially to make less naive and more worldly. 2. , organisations have tended in the past to acquire additional point products. These point products handle a range of functionality, including anti-virus, boundary email, internal email filtering, URL URL in full Uniform Resource Locator Address of a resource on the Internet. The resource can be any type of file stored on a server, such as a Web page, a text file, a graphics file, or an application program. blocking, anti-spam and secure email. For large, complex organisations the management and integration of these point products is at best difficult, and at worst impossible. This exposes the organisation to security risks, organisational confusion, performance problems, administration difficulties and a lack of management information. Secure Content Point Products The position in which most organisations find themselves is that they have deployed what are usually termed 'point products' to help fix their email security problems, and until recently this was largely the only option These products were designed to be simple and quick to install - the prime driver for this being the wish to 'plug' the virus threat hole from email, Web and attachments. Most organisations deployed one or two servers in the first instance, simply to filter inbound/outbound email and Web traffic. During the last few years, email volume and Web traffic have dramatically increased. This growth is predicted to continue. DC estimates that 31 billion emails were sent each day in 2002, and that this daily volume will exceed 60 billion by 2006. Similarly, the need to apply more in-depth policy enforcement to compensate for the ever increasing threats encountered daily has grown. Point products are now deployed at multiple gateways and also across many internal mail servers (e.g. Microsoft Exchange Messaging and groupware software for Windows from Microsoft. Exchange Server is an Internet-compliant e-mail system that runs under Windows NT/2000 and Windows Server 2003. It can be accessed by Web browsers, the Exchange client, versions of Outlook and the earlier Windows Inbox. and Lotus Domino). Point products are designed largely to be implemented in very specific areas. The control is from a management interface which has a one to one relationship with the server, hence the more servers (Internal email or Boundary SMTP (Simple Mail Transfer Protocol) The standard e-mail protocol on the Internet and part of the TCP/IP protocol suite, as defined by IETF RFC 2821. SMTP defines the message format and the message transfer agent (MTA), which stores and forwards the mail. gateway) you need to deploy, the more points of control you need to manage. Every single channel (e.g. new user, network or policy etc.) has to be manually replicated individually across all the servers, which can prove to be labour intensive and very slow. Broadly speaking Adv. 1. broadly speaking - without regard to specific details or exceptions; "he interprets the law broadly" broadly, generally, loosely , there are no access control rights in point products. Therefore, if you have the login Signing in and gaining access to a network server, Web server or other computer system. The process (the noun) is a "login" or "logon," while the act of doing it (the verb) is to "log in" or to "log on. rights to the server, then you can make changes; conversely con·verse 1 intr.v. con·versed, con·vers·ing, con·vers·es 1. To engage in a spoken exchange of thoughts, ideas, or feelings; talk. See Synonyms at speak. 2. , without access rights, you can do nothing. Modern companies need the ability to give granular granular /gran·u·lar/ (gran´u-lar) made up of or marked by presence of granules or grains. gran·u·lar adj. 1. Composed or appearing to be composed of granules or grains. 2. access tights in accordance Accordance is Bible Study Software for Macintosh developed by OakTree Software, Inc.[] As well as a standalone program, it is the base software packaged by Zondervan in their Bible Study suites for Macintosh. with the person's role and responsibilities. For example, network planners might need merely to view usage profiles and statistics, whilst security staff might need to make policy changes and view selected queues. In addition, different business units might need the ability to monitor and control their own domains. The way that most point products are built means that they need to be run by highly trained technical staff. As time moves on, it becomes obvious that the business requires a variety of people to access the systems. Therefore, the management and control needs to be made simpler, easier to understand and to manage. In addition, there is a growing need for the ability to control and report across the wider organisation and to archive emails where necessary. Managing Complexity Most large organisations have Anti-Virus, Firewall and Content Filtering See Web filtering and parental control software. point products in place. There are many good products available to address each problem, but over time this approach has evolved into a much broader management issue. Given the distribution of server technology, the demands of increased traffic on networks and the absence of accurate reporting on messaging traffic, the point product approach is too difficult to manage and deploy to deliver the methodology required to ensure both Enterprise-wide content security, and maximum performance of resources. What is now needed by larger, complex, distributed Enterprises is a more holistic approach holistic approach A term used in alternative health for a philosophical approach to health care, in which the entire Pt is evaluated and treated. See Alternative medicine, Holistic medicine. to managing and securing electronic communications. In very large, mature, global Enterprises, it is not unusual to have to support a heterogeneous Not the same. Contrast with homogeneous. heterogeneous - Composed of unrelated parts, different in kind. Often used in the context of distributed systems that may be running different operating systems or network protocols (a heterogeneous network). IT infrastructure with a mixture of Windows NT/2000 and Unix platforms. Each platform poses its own distinctive email threats. Another issue with which people have been faced is encrypted en·crypt tr.v. en·crypt·ed, en·crypt·ing, en·crypts 1. To put into code or cipher. 2. Computer Science secure messaging. T his can prove to be a real problem, unless a gateway solution has been deployed to scan messages as well as manage encryption The reversible transformation of data from the original (the plaintext) to a difficult-to-interpret format (the ciphertext) as a mechanism for protecting its confidentiality, integrity and sometimes its authenticity. Encryption uses an encryption algorithm and one or more encryption keys. of emails. Today organisations either turn a blind eye and allow encrypted messages in, or block them all out. The latter introduces more management overhead to release messages on an individual basis, and the former leaves a considerable hole in security policy. A further point to consider is that of multiple gateways with point products. Many organisations struggle to keep consistency on the rule set applied across those point products. It is vitally important for an organisation that has a corporate policy on email and Web usage to be able to enforce the policy across all points of entry on the network. As the problems of performance, scalability, redundancy and new threats have grown, most organisations have simply thrown more hardware and software at the issues as a 'quick fix'. At Clearswift, we often refer to this as 'band-aid' security control, or merely fire fighting fire fighting, the use of strategy, personnel, and apparatus to extinguish, to confine, or to escape from fire. Fire-Fighting Strategy Fire fighting strategy involves the following basic procedures: arriving at the scene of the fire as rapidly as the damage as it appears. Large companies are now being forced to take a step back and look at how they can manage these important issues more efficiently and cost effectively. 'Band Aid' Problems The following trends are emerging in organisations that continue to allow 'band-aid' tactical security In operations, the measures necessary to deny information to the enemy and to ensure that a force retains its freedom of action and is warned or protected against an unexpected encounter with the enemy or an attack. See also physical security; security. products and techniques to be deployed: * Large numbers of staff are required to update, manage and control fairly routine changes in e-policy * Performance problems (throughput) result in large volumes of software and hardware being implemented * Perceived business value of e-security is undermined because it is, at best, very difficult to generate any meaningful management information from existing point products * Adequate/increased security policy is overlooked because day-to-day implementation and control is difficult to administer * Large security gaps result when central company e-policy is not implemented consistently across dispersed dis·perse v. dis·persed, dis·pers·ing, dis·pers·es v.tr. 1. a. To drive off or scatter in different directions: The police dispersed the crowd. b. organisations * There are security holes where corporate e-policy is switched off or ignored because it impacts on performance of email and Web traffic * Internal wrangles arise about ownership and administration of security policy. IT owns the hardware and software and generally has to make changes, whilst Security owns policy and ensures it is enforced, but lacks the IT skills to do this. In the background, the Human Resources The fancy word for "people." The human resources department within an organization, years ago known as the "personnel department," manages the administrative aspects of the employees. department usually also wants a say in how this process is administered * There is a temptation to use inappropriate software management tools to try to control the point products Pervasive pervasive, adj indicates that a condition permeates the entire development of the individual. Implementation of Email Policy A major issue to address is the pervasive implementation of policy. For the Enterprise, the point product approach falls short in two ways. First, the applications themselves are not designed for distributed implementation: changing policy in the complex organisation means physical interruption INTERRUPTION. The effect of some act or circumstance which stops the course of a prescription or act of limitation's. 2. Interruption of the use of a thing is natural or civil. to multiple servers in multiple locations. This means time, cost and plenty of room for error. Secondly, the different technologies require different methods of management: there is no single way of implementing cross-organisational policies - whether for interception, transport, content types or encryption that ensures consistency, speed and accuracy. Email and Web have ceased to be merely communications protocols Hardware and software standards that govern data transmission between computers. The term "protocol" is very generic and is used for hundreds of different communications methods. A protocol may define the packet structure of the data transmitted or the control commands that manage the : for many employees that are the essence of Work - if email breaks down, so does the Enterprise. The increases in email volumes, Web pages and electronic transactions show that commercial and government organisations are now totally dependent on the ability to send, receive, archive and retrieve electronic content for their minute to minute operations. At the same time, these organisations are coming under increasing legislative and social pressure to ensure a clean, safe digital environment for employees, customers and shareholders. The demands for 24/7 throughput, immediate access and secure communications have been at odds - and Enterprise have to resolve that conflict. Securing Content - Enforcing Policy - Mastering Complexity What large, complex organisations need is a single point of control for the replication In database management, the ability to keep distributed databases synchronized by routinely copying the entire database or subsets of the database to other servers in the network. There are various replication methods. , distribution and enforcement of all messaging policies across the Enterprise. This same single control point should also enable the integration and management of content filtering and encryption engines at the Boundary, internally and for Web access. There should be no limitation on the number of protocols which can be supported - or the number of machines within protocols. There cannot be any limitations on how the individual machines, protocols, system elements, users and administrators can be distributed. Similarly, Enterprises need no limits on the amount of information that can be collected and summarised across and within protocols about users, system elements and operational parameters. The management, deployment and administration of the policy and encryption engines must appear to the user as a seamless whole - as must the integration and interworking (standard) interworking - Systems or components, possibly from different origins, working together to perform some task. Interworking depends crucially on standards to define the interfaces between the components. of other key software and hardware investments made by companies. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion