On the one extreme, a system with no passwords, unlimited
access from anywhere, and few restrictions on user behaviors provides the
easiest environment for users to work and create within. This also creates an
environment where company resources and intellectual property could be easily
damaged, lost, or stolen. On the other extreme, frequently changing passwords,
restrictive “need to know” access, and draconian penalties for any mistakes can
secure the resources at the expense of users being unable to or unwilling to do
their jobs to the fullest.
A natural conflict will always exist between the users and the
security requirements of an organization. Users often see any restrictions
placed on them as interfering with the company’s capability to compete and be
efficient. Security personnel often see users as security risks, instead of the
tools of production that ultimately pay the bills. Figure 1-6 represents the
balance between ease of use and network security. The same representation could
also be applied to balancing services and cost versus security.
Sections
Comments (0 posted)
Syndication
