Feeds

Securing the remote estate

Lock ‘em down or set ‘em free?

  • alert
  • submit to reddit

3 Big data security analytics techniques

Workshop One of the challenges of managing a remote desktop estate is security. It’s not a new problem, but it has been raised higher in the collective consciousness in the last few years, thanks to the proliferation of smaller, cheaper and more portable devices.

Its not enough to blame human nature - although sitting here as I type I know full well that if I were to leave my laptop on the train, its contents would be available to the next person opening it up, such is my laziness. We may talk the talk, but we don’t always walk the walk. What can we do about it?

It would be great to be able to say that we just need the right products in place. There’s no shortage of them – from personal firewalls and anti-virus and disk encryption, to Network Access Protection (NAP) and virtual private networking (VPN). Despite all such things the remote desktop estate is not what anybody would call ‘secure’. Is it?

So what’s the problem?

The issue is not an issue because of a lack of available products to use to counter the forgetfulness or the bad luck of people entrusted with the safekeeping of portable computers. Nor is it an issue because organisations have not established rules, policies and procedures designed to minimise loss or damage.

The problem is the gap between these two areas in a vital place – where the rubber hits the road. I wager that most mobile users don’t have then faintest idea exactly what is expected of them, despite being given a decently specced machine with appropriate security features and the ‘new joiner’ briefing on security procedures.

So what is reasonable to expect users to do to protect their kit, and more importantly the company information contained inside it? Our research suggests that beyond ‘getting the technology right’, the biggies are ‘smart deployment’ and ‘smart use’. In practical terms this means being a bit more savvy about how laptops and other mobile devices are rolled out, for example by setting appropriate policies, ensuring users are aware of their obligations and making it easy for them to co-operate.

Sounds good, but is this just motherhood and apple pie in your organisation? As ever, we’d love to hear about the issues you face in this area, especially if you have managed to solve them!

SANS - Survey on application security programs

More from The Register

next story
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
US mobile firms cave on kill switch, agree to install anti-theft code
Slow and kludgy rollout will protect corporate profits
Leaked pics show EMBIGGENED iPhone 6 screen
Fat-fingered fanbois rejoice over Chinternet snaps
Microsoft lobs pre-release Windows Phone 8.1 at devs who dare
App makers can load it before anyone else, but if they do they're stuck with it
Oh no, Joe: WinPhone users already griping over 8.1 mega-update
Hang on. Which bit of Developer Preview don't you understand?
Report: Apple seeking to raise iPhone 6 price by a HUNDRED BUCKS
'Well, that 5c experiment didn't go so well – let's try the other direction'
Feast your PUNY eyes on highest resolution phone display EVER
Too much pixel dust for your strained eyeballs to handle
Rounded corners? Pah! Amazon's '3D phone has eye-tracking tech'
Now THAT'S what we call a proper new feature
Hearthstone: Heroes of Warcraft – A jolly little war for lunchtime
Free-to-play WoW turn-based game when you have 20 minutes to kill
Zucker punched: Google gobbles Facebook-wooed Titan Aerospace
Up, up and away in my beautiful balloon flying broadband-bot
prev story

Whitepapers

Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.