Network Security: Detailed info on RE: Notebook policy (need advice)

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Security-Basics

[Top] [All Lists]

RE: Notebook policy (need advice)

from [Pranav Lal] Network Security

[Permanent Link]

Subject:	RE: Notebook policy (need advice)
Date:	Thu, 25 Jan 2007 06:31:30 +0530

Hi Justin,

<snip This is also something my company is currently looking at. One of the
issues we discussed however was the fact that when you start basing policy on
risk there becomes a "grey" area. For example, we really only care about losing
"sensitive" information, but in our environment, that tends to lead to our users
deciding what is "sensitive", and applying their budget/decision accordingly. By
making a policy/standard across the board, we might be paying extra to encrypt
unsensitive data but avoid something slipping through the cracks. 
PL] this is where an information asset classification comes in handy. You can
mandate that all assets above a certain classification level need to be
encrypted by default which takes the judgement out of the users the main.

Pranav

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Notebook policy (need advice), Pranav Lal <= Fwd: Notebook policy (need advice), kevin . fielder Re: RE: Notebook policy (need advice), Johnny

Previous by Date:	RE: Encryption Key Management System, Jaime A. Diaz
Next by Date:	RE: Notebook policy (need advice), Pranav Lal
Previous by Thread:	Re: Highlighting weak password dangers, Kenton Smith
Next by Thread:	Fwd: Notebook policy (need advice), kevin . fielder
Indexes:	[Date] [Thread] [Top] [All Lists]