Recently in Application Filtering Category

Secure and Enable the New Internet

By
Kailash Ambwani
 on December 7, 2009 5:25 AM | | Comments (0)

Last month we announced that Check Point Software Technologies had purchased our application database for use in their products. According to Check Point, this technology will "... provide businesses unparalleled granular control over application usage and enable security administrators to prevent threats associated with the use of certain Internet applications. Check Point will offer this new level of security controls as a Software Blade that will be available for all gateways." (read their release here: )

This deal reaffirms our leadership in the Web 2.0 security space. More importantly, it highlights the growing need for network solutions that provide visibility and control at the application level not just at the port & protocol level. Check Point sees this need and will use our database to provide application level control. Application level control will become the price of entry in the Firewall market.

But beyond visibility and control, what enterprises are asking for is "enablement".

  • How do I allow access to Facebook or LinkedIn and stay in compliance with FINRA or FERC or HIPAA or PCI or [insert your favorite regulation here]?
  • How do I allow access to YouTube videos but not the inappropriate stuff?
  • How do I allow access to blogs and wikis and webmail but ensure that confidential information if not getting posted?

Our customers realize they can't block access to the New Internet - they must enable it.

Which is why our mission statement reads "Secure & ENABLE the New Internet"


How are you and your organization enabling the new Internet?  What tools and applications do you need to secure to effectively enable your team?

Why China's Web Filtering Plan Won't Work

By
Larissa Gaston
 on June 22, 2009 12:13 PM | | Comments (0)

As you've no doubt already heard, China recently announced plans mandating that all new computers sold in that country - including imported PCs - be delivered with pre-installed and pre-configured Web filtering technology beginning July 1, 2009.

 

Branded Green Dam-Youth Escort, China's foreign ministry spokesman defends the software claiming it's "aimed at blocking and filtering some unhealthy content, including pornography and violence" in an effort to protect children.

 

Putting aside the obvious discussions of censorship versus freedom of information, there's a fatal flaw in China's plan. Maybe we shouldn't tell them this, but Web filtering software alone doesn't block people from visiting Web sites and/or accessing Web applications.

 

Surprised? While the Internet used to be primarily about transmitting and accessing fairly static information via HTTP, FTP and e-mail it's now dominated by Web 2.0 applications such as instant messaging, P2P, VoIP and social networking sites. Savvy Internet users already use tools like anonymizers to mask their browsing habits, and real-time communications and Web 2.0 applications are highly evasive, specifically designed to get around Web filtering, firewalls and other traditional security solutions using a variety of techniques like port crawling, tunneling, onion routing, etc. - after all, their goal is to grow their communities and ensure users have the full experience.

 

From what I've read, neither China nor the media has considered or addressed this. I'm certainly not in favor of China to block access -- yes, FaceTime helps organizations control employee Web browsing and use of Web 2.0 applications, where visiting certain sites or using certain applications may be inappropriate in the workplace, put the company at risk or impact productivity -- but the Web sites you choose to visit and applications you use at home are for you to decide and parents to control.

 

The backlash over China's censorship plans is widespread, including nearly 20 trade groups representing technology companies calling on the Chinese government to reconsider the mandate contending that it "raises significant questions of security, privacy, system reliability, the free flow of information and user choice." There's also the California company that claims the mandated Internet filtering software contains stolen programming code. Other articles say the Chinese government has already backed down, retreating on its controversial new web filtering plan, saying the software can be uninstalled or switched off.

 

It's not clear yet how all of this will play out, but you have to ask, if China's mandate won't be effective, why do it at all?

Workplace Internet Leisure Browsing and Employee Productivity

By
Sarah Carter
 on April 7, 2009 10:21 AM | | Comments (0)

A study released last week by the University of Melbourne's Department of Management and Marketing maintains that workers who engage in 'Workplace Internet Leisure Browsing' (WILB) are more productive than those who don't.

 

Well, that's good news for the 51 percent of workers who access social networking sites at least once a day while at work - not to mention the 50 percent that check their Facebook pages and the 69 percent that watch videos on YouTube several times a day, according to FaceTime's Collaborative Internet Survey published last fall.

 

 

Thumbnail image for piechart_FrequencyOf-SocialNetworkUseAtWork.jpg

The University's Dr. Brent Cocker says:

 

"Firms spend millions on software to block their employees from watching videos on YouTube, using social networking sites like Facebook or shopping online under the pretense that it costs millions in lost productivity, however that's not always the case."

 We couldn't agree more. The whole blocking strategy just doesn't seem to work in the real world.

 

At the same time, the results of the Melbourne study directly contrast some news that broke in the UK this last week - where students at Bournemouth University have been complaining that they can't get work done because other students are hogging University computers to use Facebook and Twitter.

 

Visibility into what employees (and students in this case in Bournemouth) are accessing, is crucial not just to an effective IT security approach, but also it seems to ensuring productivity. If you don't know that 69 percent of your workforce is watching YouTube, how will you know that's the cause of your bandwidth spikes? What if you could give them a bandwidth allotment for such activities, and when their quota is reached, its bye bye water skiing squirrel videos?

 

It sounds like the folks at Bournemouth Uni's IT team could do with not just controlling the bandwidth taken up by some students, but also the time that they're allowed to be on Facebook!

 

Watch this space for upcoming announcements about gaining greater visibility into what's really happening within corporate and organizational networks.

Main Index | Archives | Compliance »

About this Archive

This page is a archive of recent entries in the Application Filtering category.

Compliance is the next category.

Find recent content on the main index or look in the archives to find all content.

Twitter Updates

follow us on Twitter

Search

Blog Roll

Collaborative Thinking

Ed Brill

Eileen Brown's Weblog

Enterprise 2.0 Blog

FastForward

Irwin Lazar

No Jitter

Schneier

Single Point of Contact

SKT

Team Think

Technology Live

Techland

The Facebook Blog

The Impact of Information Technology (IT) on Businesses and their Leaders

The Osterman Research Blog

The User View

Security Fix

Zero Day

Comment/Trackback Policy

This site supports an open comment policy. Rude, wasteful, off-topic, privacy-intruding or libelous comments will be deleted. Comments will remain open unless abused.