Space Travel News  
Wake-Up Call To Business: Tighten Up On Information Security

Tyler Moore of the Computer Laboratories, University of Cambridge expanded, "Information security is now a mainstream political issue, and no longer the province of technologists alone," he said.
by Staff Writers
London, UK (SPX) Jul 07, 2008
According to the Department of Trade and Industry there are 4.5 million businesses in the UK of which 99.3% are small to medium sized enterprises (SMEs), employing 0-49 employees. These comprise 58.9% of the total workforce of 24.4 million and account for 51.9% of the 2,600 billion pound UK turnover.

Bruce Hallas, a specialist in information security, said "SMEs are particularly prone to poor or even non-existent information security.

As awareness of the importance of information security increases, the SMEs stand to lose competitiveness, potentially losing contracts with existing clients and suffering the financial consequences that are increasingly arising from information security incidents."

An over reliance on Information Technology (IT) has developed over recent years. According to Hallas, this is the result of confusing Information Technology with Information Security (IS). With 'insufficient' money to invest in expensive information security expertise, many SME's are investing heavily in IT in the mistaken belief that IT will ensure IS.

"Yet the largest business drivers for security investment are contractual, regulatory, market pressures from consumers, corporate clients and the public sector. Not the typical domain of IT. The biggest security vulnerability lies with people," Hallas says.

"Security is about managing the risk from people, both known and unknown, interacting with your information and information systems. It is more about people management than technology."

Tyler Moore of the Computer Laboratories, University of Cambridge expanded, "Information security is now a mainstream political issue, and no longer the province of technologists alone," he said.

"People used to think that the internet was not secure because there was not enough of the right technology, not enough sophisticated cryptographic mechanisms, authentication or filtering etc. so advanced encryption, public key infrastructure and firewalls were added.

"The internet did not get any safer," he added. "In 1999 it became clear that even the latest and greatest technology will not solve all our problems if those who protect and maintain them are not sufficiently movitated. The issue is one of incentives."

The impact of an under-incentivised workforce can have devastating consequences in business such as denial of service attacks allowing viruses to infect the IT system, hospitals putting access to data above patient privacy, bank customers suffering phishing attacks by poorly designed banking systems.

"Economics can explain many of the failures and challenges in a new way" Tyler Moore said. "As companies are beginning to realise the value of good information security practice so security measures are being used not only to manage the evils of the attackers but also to support the business models of companies."

Now that the Achilles heel of the information security problem has been identified, companies, especially banks, often fight shy of divulging information about attacks, whether they have been successfully repelled or not because the information concerned may be sensitive.

Help is at hand in the form of a new report "Security Economics and the Internal Market" which outlines police options regarding the economic problems in providing IS.

The report's first recommendation is for the EU to issue a comprehensive breach notification law to notify consumers when their details have been compromised so they can protect themselves.

Examples of potential damage by inappropriate IS systems:

- Distributed denial service attacks where viruses infect machines. The users of the machines often do not know about it, but their machines are used remotely to target other people.

- Health records: Patients suffer when hospital system initiators put the simplicity of the IT system and its access to researchers above the value of patient privacy. Bank customers suffer when poorly designed systems enable phishing to happen and make fraud easier. Casino websites suffer whenever they are hit by denial of service website attacks and extorted for ransom.

- Phishing: "The practice of luring unsuspecting Internet users to a fake Web site by using authentic-looking email with the real organization's logo, in an attempt to steal passwords, financial or personal information, or introduce a virus attack; the creation of a Web site replica for fooling unsuspecting Internet users into submitting personal or financial information or passwords."

Related Links
Economic and Social Research Council



Memory Foam Mattress Review
Newsletters :: SpaceDaily :: SpaceWar :: TerraDaily :: Energy Daily
XML Feeds :: Space News :: Earth News :: War News :: Solar Energy News


Fujifilm Unveils GPS-Based Data Tape Tracker
Valhalla NY (SPX) Nov 08, 2007
Fujifilm today announced the Fujifilm Tape Tracker, a unique, high performance data asset management solution that improves the security and shipping of data tape media. Designed to fit inside a standard tape media case, the Fujifilm Tape Tracker combines leading GPS technology and a web-based application to provide CIOs and data managers with location and tracking information in real time.







  • ATK Receives Contract For US Air Force Sounding Rocket Contract
  • SpaceX Conducts Static Test Firing Of Next Falcon 1 Rocket
  • Pratt And Whitney Rocketdyne Contract Option For Solar Thermal Propulsion Rocket Engine
  • NASA, ATK Conduct First Launch Abort System Igniter Test For Orion

  • Inmarsat And ILS Set August 14 For Proton Flight With Inmarsat Satellite
  • Russia Launches Rocket With Military Satellite
  • Payload Integration Complete For Arianespace's Fourth Mission Of 2008
  • Successful Ariane 5 Solid Rocket Booster Test Firing

  • Disaster plan in place for Hubble mission
  • US space shuttle lands safely after installing Japanese lab
  • Space shuttle cleared to land, loose object poses no risk
  • Space shuttle blastoff damaged launch pad: NASA

  • NASA plans two ISS spacewalks next week
  • Shuttle astronauts bid farewell to space station crew
  • Discovery undocks from ISS
  • Shuttle Astronauts Bid Farewell To Space Station Crew

  • Russia seals agreement with private investor for space tourism
  • Analex Awarded Three-Year Option On NASA Expendable Launch Vehicles Integrated Support
  • NASA Goddard Has More Than A Dozen Exciting Missions In Next Year
  • Fly me to the Moon: Japan firm offers weddings in space

  • Shenzhou VII Research Crew Ready To Set Out For Launch Center
  • China's Shot Heard Around The Galaxy
  • A Better Focus On Shenzhou
  • Gallup Poll Shows Americans Unconcerned About China Space Program

  • Eight Teams Taking Up ESA's Lunar Robotics Challenge
  • Three Engineers, Hundreds of Robots, One Warehouse
  • Tartalo The Robot Is Knocking On Your Door
  • Sega, Hasbro unveil new dancing robot

  • Mars Sample Return: The Next Step In Exploring The Red Planet
  • Rain Showers On Mars
  • Phoenix To Bake Ice-Rich Sample Next Week
  • Phoenix Scrapes Almost Perfect Icy Soil For Analysis

  • The content herein, unless otherwise known to be public domain, are Copyright Space.TV Corporation. AFP and UPI Wire Stories are copyright Agence France-Presse and United Press International. ESA Portal Reports are copyright European Space Agency. All NASA sourced material is public domain. Additional copyrights may apply in whole or part to other bona fide parties. Advertising does not imply endorsement, agreement or approval of any opinions, statements or information provided by Space.TV Corp on any Web page published or hosted by Space.TV Corp. Privacy Statement