Keeping Your Computers &
Network Safe & Secure
by Greg Welsh
Virus: a biological term formerly used to
describe a threat to the health of living creatures. Its use
in the information technology arena reveals how much we rely
on systems that are increasingly complex and are susceptible
to threats ranging from relatively benign but uncomfortable
(think common cold) to life-threatening and unpredictable (think
flu, or SARS). If the thousands of viruses threatening your
information technology lifeline are not enough to keep you awake
at night, add worms, Trojan horses, and other elements such
as ActiveX or JavaScript that are frequent tools of hacker exploits
to the mix. Still sleeping soundly? Multiply by the several
communication protocols available on your computers and network
(SMTP, FTP, POP3, HTTP, etc.) and the dozens of ports (open
doors) used to provide services to your employees and customers.
It's a wonder that anyone can figure out what's going on and
how to protect your information assets.
What's the easiest way to avoid exposure and
the risk of infections that can threaten your business's data
and ability to function? Don't use computers. (Hah!). Try doing
that and remaining competitive; or having enough time to enjoy
friends and family. Next best thing: buy protection. You can
talk with your insurance provider about whether business continuity
policies include provisions to reimburse you for losses due
to hacker attacks or "cyber warfare," but be prepared
to hear the answer: you're on your own.
So you have a choice: self-insure (take no
precautions and pay as you go) or subscribe to security services.
Today's security solutions provide protection against the "blended
threats" described above, and maintain research labs and
facilities to provide your business with updated "inoculations"
against emerging threats. Oh, and make sure you have someone
(an employee or an IT services firm) who understands information
epidemiology and how to configure and manage your security services.
They'll need to take care of each computer on your network,
your network itself, and your Internet gateway.
For small businesses, this isn't a full-time
responsibility, but it's a big-time need. While the biggest
risk is the total destruction of your business data (you're
history), the most common risk is the loss of time and productivity
(you won't make any money until the problem is fixed). We'll
talk about avoiding weapons of mass destruction in a future
column. It's called backup.
There are a number of firms that provide software
and hardware solutions (often called information appliances)
designed to give you some peace of mind. The best solution provider
for your business will depend on the size of your business,
its technical complexity, and who you select to manage this
vital project. Two of the leading vendors for small- or home-based
businesses are Network Associates (http://www.nai.com) or Symantec
(http://www.symantec.com).
Once you
select a vendor and product and get everything installed, you'll
have protection starting at your Internet gateway (or firewall),
and continuing down to each computer on your network. Email,
including attachments, will be scanned before delivery - and
for outbound messages, before sending. Macro viruses embedded
in word processing document or spreadsheets will be detected.
Hidden code in web pages will be blocked. Your security staff
or services firm will receive alerts about attacks, and can
respond immediately, even from off-premises. The list goes on.
It's not a perfect solution for every threat, and in today's
rapidly evolving internet environment getting it right is a
moving target. The most important thing is that you get started.
Return
to top of page - Return
to homepage
|
