by Mike Masnick
Wed, Dec 3rd 2008 5:17pm
Network World has a great opinion piece about the fact that no one gets fired for banning instant messaging at work, noting how security policies often over-protect at the risk of harming potential efficiencies. This has been true for years. When telephones first became common, some companies banned anyone from having a telephone on their desk. In later years, it was true of desktop computers, internet connections, certain applications and specific websites. Lately, there's been an effort to ban social networks. In each case, the reasoning is pretty clear. Security professionals want to lock things down, and the easiest way to do that is to simply ban stuff. It's not their job to see if the applications are actually useful or could provide real ROI to a company. So the real question is how can companies avoid being overly aggressive in banning applications or websites, while still avoiding opening themselves up to too much risk?
If you liked this post, you may also be interested in...
- Bruce Schneier Sounds The Alarm: If You're Worried About Russians Hacking, Maybe Help Fix Voting Machine Security
- The Internet Of Things Is a Security And Privacy Dumpster Fire And The Check Is About To Come Due
- Half Of TSA's 30,000 Employees Accused Of Misconduct; Nearly A Third Multiple Times
- Police Slowly Waking Up To Fact That Vehicle Network Security Is A Joke To Hackers, Thieves
- TSA Scores Another PR Win With Assault Of Nineteen Year Old Brain Tumor Patient On Her Way To Treatment