Comments
yourfanat wrote: I am using another tool for Oracle developers - dbForge Studio for Oracle. This IDE has lots of usefull features, among them: oracle designer, code competion and formatter, query builder, debugger, profiler, erxport/import, reports and many others. The latest version supports Oracle 12C. More information here.
Cloud Computing
Conference & Expo
November 2-4, 2009 NYC
Register Today and SAVE !..

2008 West
DIAMOND SPONSOR:
Data Direct
SOA, WOA and Cloud Computing: The New Frontier for Data Services
PLATINUM SPONSORS:
Red Hat
The Opening of Virtualization
GOLD SPONSORS:
Appsense
User Environment Management – The Third Layer of the Desktop
Cordys
Cloud Computing for Business Agility
EMC
CMIS: A Multi-Vendor Proposal for a Service-Based Content Management Interoperability Standard
Freedom OSS
Practical SOA” Max Yankelevich
Intel
Architecting an Enterprise Service Router (ESR) – A Cost-Effective Way to Scale SOA Across the Enterprise
Sensedia
Return on Assests: Bringing Visibility to your SOA Strategy
Symantec
Managing Hybrid Endpoint Environments
VMWare
Game-Changing Technology for Enterprise Clouds and Applications
Click For 2008 West
Event Webcasts

2008 West
PLATINUM SPONSORS:
Appcelerator
Get ‘Rich’ Quick: Rapid Prototyping for RIA with ZERO Server Code
Keynote Systems
Designing for and Managing Performance in the New Frontier of Rich Internet Applications
GOLD SPONSORS:
ICEsoft
How Can AJAX Improve Homeland Security?
Isomorphic
Beyond Widgets: What a RIA Platform Should Offer
Oracle
REAs: Rich Enterprise Applications
Click For 2008 Event Webcasts
In many cases, the end of the year gives you time to step back and take stock of the last 12 months. This is when many of us take a hard look at what worked and what did not, complete performance reviews, and formulate plans for the coming year. For me, it is all of those things plus a time when I u...
SYS-CON.TV
Consumerization of Corporate IT and Data Loss
Mobile computing devices like smartphones, tablets, netbooks and laptops have more diversified threat profiles

Companies across all industries are fighting to secure their proprietary and confidential data behind firewalls and complex passwords; unfortunately, the reality is that this data is most likely still slipping through the cracks. The introduction of employee-owned devices and the consumerization of the modern workplace present a new data loss threat that organizations must now address and combat.

The consumerization of corporate IT and the advent of powerful mobile devices has forced many organizations to adopt the "bring your own (mobile) device" (BYOD) approach as an alternative IT-provisioning option instead of corporate-issued computers. Consequently, the organization's IT security department has much less operational control over the BYOD mobile devices used by their employees.

Mobile computing devices like smartphones, tablets, netbooks and laptops have more diversified threat profiles due to several factors. As mobile devices are mostly used outside of protected office networks, conventional perimeter-based security components cannot be used to monitor and control their communications. Also, by virtue of their physical mobility, smartphones, PDAs and laptops can be lost or stolen more easily. As a result, the data stored on lost or stolen mobile devices can be immediately accessible to whoever finds the device.

For mobile devices that run mobile operating systems like Google's Android or Apple's iOS, there are some other issues that broaden their threat profile. First, average users of Android and iOS-based mobile devices tend to install more third-party applications than those of Windows-based computers. The more third-party apps used on a mobile device, the more chances that one of them is malicious or has security vulnerabilities due to its poor design, which can result in easy hacking and data loss.

In addition, data leaks can be initiated by users with malicious intent who copy sensitive information from their PCs to flash memory, cameras, and all other types of portable storage. To successfully withstand and fight these new threats, organizations should purposely redesign their IT security solutions in a way to cover use scenarios and threat vectors inherent to the BYOD computing and communications context. While these threats can elude conventional network security solutions and native Windows controls, a complimentary endpoint data leak protection (DLP) technology can help enforce data protection policies.

DLP starts with contextual control to block or allow data flows by recognizing the user, the data types, the interface, the device or network protocol, the flow direction, the state of encryption, the date and time, etc. Some scenarios call for a deeper level of awareness than context alone can provide; for example, when the data being handled contains personally identifiable information, when the input/output channel is conventionally open and uncontrolled, and when the users involved have situations or backgrounds considered high risk.

Aside from removable media, data leaks can also occur from user emails, instant messaging, web forms, cloud-based storage, Wi-Fi, Bluetooth or VoIP sessions. With DLP controls, security administrators can gain greater peace of mind by passing data flows that fall into any of these categories through an additional content analysis and filtering step before allowing the data transfer to complete.

As DLP technology continues to advance, organizations are able to better understand the effectiveness of content-aware DLP components as well as the context DLP controls across all of the layers and channels of the computer. When considering the deployment of endpoint DLP solutions, organizations should make certain that the controls of the solutions they're evaluating cover all possible data leak scenarios presented by this new BYOD threat profile.

About Vincent M. Schiavo
Vincent M. Schiavo joined DeviceLock as Chief Executive Officer in September 2011. A veteran of the computer industry for more than 30 years, most recently Mr. Schiavo served as the Executive Vice President of Worldwide Sales for LogLogic, a San Jose based security information and event management provider. Prior to LogLogic, he was the Senior Vice President of Worldwide Sales and Marketing for Secure Computing, a San Jose based web information security company which was acquired by McAfee in 2008.

In order to post a comment you need to be registered and logged in.

Register | Sign-in

Reader Feedback: Page 1 of 1

SOA World Latest Stories
Lori MacVittie is a subject matter expert on emerging technology responsible for outbound evangelism across F5's entire product suite. MacVittie has extensive development and technical architecture experience in both high-tech and enterprise organizations, in addition to network and sy...
When building large, cloud-based applications that operate at a high scale, it’s important to maintain a high availability and resilience to failures. In order to do that, you must be tolerant of failures, even in light of failures in other areas of your application. “Fly two mistakes ...
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand usin...
Containers and Kubernetes allow for code portability across on-premise VMs, bare metal, or multiple cloud provider environments. Yet, despite this portability promise, developers may include configuration and application definitions that constrain or even eliminate application portabil...
Modern software design has fundamentally changed how we manage applications, causing many to turn to containers as the new virtual machine for resource management. As container adoption grows beyond stateless applications to stateful workloads, the need for persistent storage is founda...
Using new techniques of information modeling, indexing, and processing, new cloud-based systems can support cloud-based workloads previously not possible for high-throughput insurance, banking, and case-based applications. In his session at 18th Cloud Expo, John Newton, CTO, Founder an...
Subscribe to the World's Most Powerful Newsletters
Subscribe to Our Rss Feeds & Get Your SYS-CON News Live!
Click to Add our RSS Feeds to the Service of Your Choice:
Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
Publish Your Article! Please send it to editorial(at)sys-con.com!

Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021


SYS-CON Featured Whitepapers
Most Read This Week
ADS BY GOOGLE