R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from CRN
ADVERTISEMENT

Survey highlights IM threats

Corporate networks at risk from ad hoc use of increasingly popular business tool

Karl Flinders, CRN 28 Jun 2004
ADVERTISEMENT

Instant Messaging (IM) is opening up enterprises to major security risks as the application grows into an important business tool, according to the results of a survey conducted by the Information Security Forum (ISF).

Resellers should be closing the loopholes found on customer networks as a result of unregulated IM use, the report claimed.

Adrian Davis, ISF project manager, said IM has become far more than a recreational messaging tool. "It now includes file transfer and conferencing facilities, and is used for a range of important business purposes such as e-commerce, financial trading and IT support," Davis said.

He added that the market is still immature and there are few industry-wide standards or interoperability between services, applications and add-on products.

The report cited poor identity management, weak user authentication, inadequate logging and limited encryption as problems with most IM applications.

Davis said the report was carried out in response to concerns expressed by the group's 260 corporate and public-sector members.

Corporate acknowledgement of the problem is reason enough for resellers to be adding to their portfolios. In the report the ISF recommends a five-step process to secure IM services. These include risk analysis, configuring IM application controls, securing IM infrastructure and applying management controls.

David Ellis, director of e-security at distributor Unipalm, agreed that corporate networks are at risk as a result of "ad hoc" deployments of IM. He said firms must act quickly to standardise and secure its use.

"Groups within corporates have deployed IM without the involvement of central IT departments and there have been security risks introduced to these companies," Ellis said.

"There has been an increase in the number of products going into firms to protect against IM security risks, and it is an area resellers should be addressing."

Unipalm distributes products from Blue Coat and Websense that target such risks.

Ashley Bateman, technical sales manager at reseller Data Integration, said the need to secure IM use is growing. "It's a useful business tool that has a personal use, so firms need to control it, not just block it," he said.

karl_flinders@vnu.co.uk

See also:

Mark Street
IM: the modern-day email
IT managers must make plans now for managed instant messaging  12 Aug 2004
MSN, AOL and Yahoo team on instant messaging
Integrated products to let business users communicate using rival apps  16 Jul 2004
How to sell - The danger within
While most IT managers concentrate on protecting the network from outside viruses and hackers, the biggest threat most organisations face is often found just down the corridor  17 May 2004
IM firm pushes into Europe
FaceTime Communications to combine instant messaging and P2P technology  16 Dec 2003

All Bugs & Fixes

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
R&D Biotechnology C++ Developer
| Aston Carter
C++ Research Developer Global Pharmaceutical Company London C++ Research Developer Biotechology Global Medical Company London Global Biotechnology Company specialising in the research and development of cutting edge health care products is looking for an innovative, ... more >
C++ Developer, Unix, FX Algo Trading, London
| Aston Carter
Your role will be working on direct market access and exchange connectivity part of the application built in C++ on a Unix platform. The team is currently just 9 people including architect and team lead, ... more >
Java Analyst Developer, Agile, Greenfield development, London
| Aston Carter
This is a fantastic opportunity working for a leading global software house, which is part of a larger multi media company. The role is working in the core development team in central London developing a ... more >
C++, Developer, OO, Unix/NT, API, London, City, Graduate
| Aston Carter
C++, Developer, OO, Unix/NT, API, London, City, Graduate A senior core C++/ Unix developer wanting to work in the heart of the city for one of London's most successful companies is required. The successful candidate ... more >
More job opportunities
Accountancy Age
Active Home
Best Practice
Computeractive
Computing
Computing Business
CRN
Financial Director
Infomatics
Information World Review
IT Week
Management Consultancy
Network IT Week
Personal Computer World
PC Magazine
VNU Web seminars
vnunet.com
Webactive
What PC?
Useful links: About vnu network | Privacy policy | Terms & conditions
Access keys | Top of page | Feedback
VNU Business Publications
© 1995-2008 All rights reserved
VNU Business Publications Ltd., 32-34 Broadwick Street, London, W1A 2HG, is a company registered in England and Wales with company number 01513633
part of part of vnu.net europe