Congress looks to ban P2P file-sharing, will companies follow suit?
Published by | January 19th 2010 | Views:Loading
|
Recently in the United States Congress, Representative Edolphus Towns of New York introduced a bill (HR 4098) to ban P2P file-sharing on US government, and government contractor computers. This bill was likely prompted by the reckless loss of sensitive government documents through P2P networks including information about the Joint Strike Fighter and Marine One.
Congressman Towns had sent a letter to the Attorney General and the CEO of Lime Corp at that time requesting information. I applaud Congressman Towns' actions and hope to see quick passage of something that seems so obvious... Computers containing sensitive government data have no need for file-sharing software, which is typically used for sharing music, movies, and pirated software. I don't wish to demonize P2P, as I use it regularly to download Linux distributions and other legitimate content, but the bill has a provision for authorized use where necessary.
What's interesting here is that by governmental standards they seem to be taking quick action to close this gaping hole in our national security. The bigger question is, what are you doing to ensure your sensitive corporate data, and the personally identifiable information of your staff and clients is protected against leakage via file-sharing networks?
In working with companies, I find that most IT departments have a policy against the use ositive data, users loading more and more portable applications that do not require administrative privileges to install, and the absolutely huge risk presented by websites being compromised (3.
Sending email and browsing the web are the most common applications users need to use on business networks, and that traffic should be filtered at the edge. The network edge is the most common point for both data leakage and bots sending off stolen information to criminals who prey on our users. Appliance-based or gateway DLP solutions often are unable to look for content in the fragmented packets of P2P traffic, so another approach is necessary.
Another concern is why were these sensitive documents not encrypted? At a minimum simple file-based encryption would ensure accidental sharing would not compromise the secrecy of the stolen documents. Can you say the same for your critical data? I often recommend users not only encrypt their hard disks, but also ensure that extra sensitive information like personally identifiable information be file or folder encrypted as well. This way if the file is lost or stolen, at least it is no longer accessible to third parties.
Don't let your company react to the threat of P2P file-sharing and data leakage slower than the US government. Look to the technologies available to you and find a way of giving that P2P policy some teeth.
Rate this article:
Total Vote: 0, Rating: 0/5
This article was written by Chester Wisniewski of Sophos and is is reproduced here with their full permission. Sophos provides full data protection services including: security software, encryption software, antivirus, and malware.- Latest Technology Articles
- Kodak Digital Cameras in India
Author: John Wells | Date: February 11th 2010Kodak Digital Cameras have gained wide popularity across India, as they are one of the best availabl... - Spice Mobile Phones in India
Author: John Wells | Date: February 11th 2010Spice mobile Phones have constantly improved their product range to meet the varying demands of the ... - Remote Shutter Release – Answer for Unstable Hands
Author: Gayle Moore | Date: February 11th 2010Remote shutter release is an utility for all those photographers who somehow do to ruin their pictur... - A brief about the Magnetic Testing
Author: Editor123 | Date: February 11th 2010Non-destructive testing utilizes test methods that can examine equipment or any material without cau... - Versatile uses of Copper
Author: Sam Douson | Date: February 11th 2010For its ductile characteristic, Copper is used in several types of industries. The mineral can be co... - reverse phone number lookup
Author: 1phonenumberreve | Date: February 11th 2010Reverse phonephone Lookup are you able to Get One For Free?
reverse phone look up
L... - keywords for search engines
Author: Keyworddiscovery | Date: February 10th 2010keyword density tool
There are lots of keywords proposal tools available that will help you... - keyword discovery
Author: Keyworddiscovery | Date: February 10th 2010keyword popularity
There are many keywords proposal tools available that will help you find... - Sony’s Latest e-Reader: a First with Touch-Screen Navigation
Author: Marco Gustafsson | Date: February 10th 2010Sony introduced the first e-reader - the short-lived PRS 500 - in 2006, before Amazon’s 2007 Kindl... - MP3 Players in India
Author: John Wells | Date: February 10th 2010Then we look at this category, the first thing that comes to mind is diversity. Some of these player... - MP3 Players Performance
Author: John Wells | Date: February 10th 2010When it comes to performance, none of the other three PMPs can really hold a candle to Apple’s ti... - Basic Knowledge About HDPE
Author: Taneisha Jones | Date: February 10th 2010Gaining knowledge about the substance HDPE will help you understand how useful it is. So learn about... - Video Conferencing Solutions for long distance communication
Author: James Snv | Date: February 10th 2010Web conferencing services enable you to carry out meetings and webinars (web based seminars) over th... - Google adds 'Buzz' to social networking, forget Facebook tweet
Author: Merinews | Date: February 10th 2010Mover over Facebook and Twitter, the internet stalwart Google launched its rocket in the social netw... - Inalsa Microwave Oven
Author: Monty Alexander | Date: February 10th 2010In this fast moving modern world, there is little time to cook large meals. In several families, man... - Canon LEGRIA FS22 v/s Panasonic HDC-HS20 Digital Camcorder
Author: Charles Dickens | Date: February 9th 2010There is an immense range of camcorders available on the market. It literally is a problem of plenty... - information about nexus one case
Author: Nexussone | Date: February 9th 2010consumers of nexus one smartphones will require nexus one case for keeping the handset safe. The nex... - Information about nexus one battery
Author: Nexussone | Date: February 9th 2010The nexus one is a smartphone from google which uses the Android open source mobile operating system... - VIZIO VMT190XVT Razor LED LCD HDTV
Author: Max745corner | Date: February 9th 2010VIZIO has a Razor LED HDTV that is ultra thin, measuring less than 1” thick with SRS TruSurround H... - Coupons Tampa Bay
Author: Frugalpop09 | Date: February 9th 20101 of the latest trends for nearby businesses may be the web coupon. Not just any old internet coupon...
Comments (0)
Post a Comment
