Pity the systems administrator who is in charge of security on the modern corporate computer network.
Beyond just mainframes, servers and desktop computers, today's corporate networks include laptops, personal digital assistants (PDAs), wireless local area networks, instant messaging and Internet servers that have to stay constantly connected to the outside world. All of these help companies to function, but each presents security problems that have to be solved. And the systems will become even more complex as home and mobile access to them continue to rise.
Most companies start with a firewall placed at the points where their computers have contact with outside computers via the Internet. Some go as far as to place more firewalls within the corporate network itself, adding extra layers of protection for central servers and computers that store sensitive or valuable data.
Putting office computers on a virtual private network with integrated encryption and firewalls is also becoming a common solution to security problems, industry experts say.
Hansen Chang, Asia vice-president for firewall vendor Netscreen, says in Hong Kong, the government recommends the two-layer approach to firewalls for finance services companies, although some institutions take extra precautions 'I know some are nervous. I know they have up to seven layers of firewalls. I think that is too much.'
In addition, says security consultancy Yiu Kee's chief consultant, Allan Dyer, intrusion detection software can be installed to alert administrators of unauthorised access, and additional screening for e-mail and other messages can be placed at Internet gateways. Mr Dyer, who is also president of the Association of Anti-Virus Asia Researchers, adds, however, that physical security, such as controlling who has access to a company's desktop computers, is just as vital.
'Although the Internet is a good way of making yourself accessible to criminals worldwide, there are still lots of criminals or people who can walk in through your front door,' he says. 'So physical security and making sure that they are not wandering around the company sitting down at a computer and downloading all your confidential information is a good idea.'
