security

Network and Internet Security

Any organisation with a computer network requires a good level of security, protecting their data from unauthorised access, and stopping the infiltration of damaging software being introduced to the network.  At its most basic level this involves automatically updated virus protection, spam prevention, and a firewall.  But as more and more business is conducted electronically and there is greater demand for remote access by staff and business partners, the security requirements become a great deal more involved.

We look here at some of the common security tools and where they apply:

Virus Protection: Standard for everyone, but businesses need to take into account how much overhead the anti virus software puts on their system, how easy it is to manage, and ensure that all end user machines are automatically receiving updates of the latest virus signatures. A common mistake is to purchase new desktops or laptops that come with anti virus installed - but this is only a short term deal, once the trial period for the software runs out, updates stop and therefore protection is compromised.

Spam Prevention: Unfortunately the level of spam in email is high, so to avoid your in box getting cluttered with unwanted offers, putting in place spam prevention is essential.  These can be via software installed on your servers, specialist hardened appliances, or via managed services that capture all your emails offsite and pass on only the legitimate ones.

Taking this further you can add content filtering - so to prevent data loss you check the content of emails and messages in and out of your system, looking for confidential data being leaked, whether intentional or not.

Firewalls: A firewall stops the unauthorised traffic getting into the network.  A robust network firewall appliance that operates purely as a security device is recommended.

Two Factor Authentication: This technology allows remote access to be delivered only to those who meet a stricter criteria than just username and password.  Usually a hardware token will be supplied that generates new login codes every 60 seconds, to be used in conjunction with the username and password, and this ensures that only the person possessing the token as well as the other login requirements can be granted access. 

Intrusion Prevention: Instead of just stopping traffic that is unauthorised as a firewall does, Intrusion Prevention (IPS) identifies suspicious activity and prevents it from getting access, even if it is not a known attack pattern. 

Web Filtering: Damaging software can be downloaded from infected websites, as well as misuse of web browsing which can expose an organisation to legal issues. By putting in place a web filtering solution these can be prevented, or controls put around the web usage.

VIrtual Private Network (VPN): VPN's are a secure method of remote access, and the growth area here is the use of SSL VPN's which create a secure tunnel between the end user's machine and the network. These can be enhanced further by the addition of smart technology to interrogate the remote user's machine to ensure that it meets the security standards of the organisation, such as up to date virus protection etc.  To verify the identity of the remote user two factor authentication can be added. 

Overall security for the network has many facets, and at times it can be confusing to know what is required.  If you want to improve your security, or identify what is required, talk to NewBase on (07) 3216 0776 or email to info@newbase.com.au

Check out the latest on some of the technologies we work with at NewBase Updates

To obtain Informative Reports on relevant technologies and how they can help you overcome business challenges take a look at some of the reports we have available in PDF format here.

NewBase are based in Brisbane, Queensland, but provide services throughout Australia.

Citrix Consulting, Disaster Recovery, Microsoft networking, Email Archiving, Firewall, Intrusion Prevention, Optimisation, Clustering, Support Agreements, Storage Area Networks SAN, Thin Client Computing, Content Filtering, Small Business Server, Exchange, SQL Server, Blade Servers, Virtualisation, Secure Remote Access.