In: Root » Computers and technology » Data security
Remote network access is a convenience that allows employees to do their daily work, regardless of their location. This functionality requires an extension of the network security policy discussed above, focused on the methods and use of remote access. Remote access can be provided via Virtual Private Networks and the previously mentioned dial-in modems. The provision of these capabilities often conflicts with the security policy for the network because the policy generally seeks to keep outsiders from accessing internal information and resources. Here is Company Z's Remote Access Security Policy: · The company provides remote access capabilities via a Virtual Private Network solution that supports remote dial-in Internet service providers and broadband cable-modem users. · Configuration of the VPN hardware and software follows the security policy set forth for other network equipment. · Users requiring remote access capabilities must receive approval from their manager and the IT department and fill out the required forms before remote access is provided. · Remote access is authenticated via passwords, security tokens, or single-use passwords. · Remote access passwords should follow the security policy guidelines for authentication. · Remote access software, configuration, and account information is to be used only by the employee for whom it is intended. · If access by multiple remote machines is required, this should be indicated on the Remote Access Form. · Remote access should be used only when required and not left unattended by the employee. · Acceptable use of this resource is outlined in the User Security Policy. Remote access is a subfunction that inherits security policy guidelines from several areas. The administration and configuration of the VPN falls under the Company Z's Network Devices Policy, whereas the authentication and use of the VPN by employees is governed by the Authentication and User policies. As you can see, a comprehensive security policy is very easily scaled to meet new requirements and functionality within an organization. The effort expended in the early development stages of the security policy or policies simplifies its extension greatly
|
|||||||||||||
Disclaimer
1) E-articles is not responsible for the information contained by this article as well for any and all copyright infringements by authors and writers. E-articles is a free information resource. If you suspect this article for any copyright infringement, please read the terms of service and contact us or use the "Report this article" button on this page to investigate the problem.
2) E-articles is not responsible for inaccuracies, falsehoods, or any other types of misinformation this article may contain and will not be liable for any loss or damage suffered by a user through the user's reliance on the information gained here. |
|||||||||||||
