EMERGING FIREWALL MANAGEMENT ISSUES
Firewalls introduce problems of their own. Internet security involves constraints, and users don’t like this. It reminds them that Bad Things can and do happen. Firewalls restrict access to certain services. The vendors of information technology are constantly telling us “anything, anywhere, any time”, and we believe them naively. Of course they forget to tell us we need to log in and out, to memorize our 27 different passwords, not to write them down on a sticky note on our computer screen and so on.
Firewalls can also constitute a traffic bottleneck. They concentrate security in one spot, aggravating the single point of failure phenomenon. The alternatives, however are either no Internet access, or no security, neither of which are acceptable in most organizations
Firewalls protect private local area networks (LANs) from hostile intrusion from the Internet. Consequently, firewall protection allows many LANs to be connected to the Internet where Internet connectivity would otherwise have been too
great a risk.
Firewalls allow network administrators to offer access to specific types of Internet services to selected LAN users. This selectivity is an essential part of any information management program, and involves not only protecting private information assets, but also knowing who has access to what. Privileges can be granted according to job description and need rather than on an all-ornothing basis.
The issue that most firms grapple with is the make-or-buy decision. Until recently, few vendors have offered off-the-shelf firewall systems. Hence, in the past, construction of firewalls required a significant amount of corpo-rate time and effort, and most firewalls were handcrafted by site adminis-trators. With more choice in the marketplace, managers need to be careful in selecting a firewall solution and need to evaluate the trade-off between ease of use, ease of administration, and data security.
Frequently, technical design of the firewall is dictated by financial con-cerns about the costs of buying or implementing a firewall. For example, a complete firewall product may cost anywhere between $0 and $200,000. At the low end, configuring a router will cost staff time. Implementing a high- end firewall with specialized proxy servers might cost several months of programming effort. Managers must also consider the costs of systems management and evaluate firewalls not only in terms of immediate costs, but also in terms of continuing maintenance costs such as support and soft-ware upgrades.
Firewalls also present capacity management problems. For instance, in companies that use the Internet a lot, firewalls represent a potential bottle-neck, since all connections must pass through the firewall and, in some cases, be examined by the firewall.
Finally, firewalls present content management and control problems.
Who manages the information on a firewall?
Is it the function of the MIS department, marketing communications, or should it be left to the func-tional units? This is a tricky problem because for large firms, content man-agement is a function of the marketing communications department, which zealously guards against any effort that may affect the corporate image. In such a scenario, functional units would have to approach marketing com-munications for clearance and approval before placing anything online. The approval process is bottlenecked and could result in delays of several weeks. In the meantime, the functional units are getting worried because the content is getting dated and would have to. be updated the minute it is approved: a classic “Catch 22” situation. Addressing control issues will re-quire serious thinking about delegation of authority, organizational struc-ture, and content management.
Firewalls introduce problems of their own. Internet security involves constraints, and users don’t like this. It reminds them that Bad Things can and do happen. Firewalls restrict access to certain services. The vendors of information technology are constantly telling us “anything, anywhere, any time”, and we believe them naively. Of course they forget to tell us we need to log in and out, to memorize our 27 different passwords, not to write them down on a sticky note on our computer screen and so on.
Firewalls can also constitute a traffic bottleneck. They concentrate security in one spot, aggravating the single point of failure phenomenon. The alternatives, however are either no Internet access, or no security, neither of which are acceptable in most organizations
Firewalls protect private local area networks (LANs) from hostile intrusion from the Internet. Consequently, firewall protection allows many LANs to be connected to the Internet where Internet connectivity would otherwise have been too
great a risk.
Firewalls allow network administrators to offer access to specific types of Internet services to selected LAN users. This selectivity is an essential part of any information management program, and involves not only protecting private information assets, but also knowing who has access to what. Privileges can be granted according to job description and need rather than on an all-ornothing basis.
The issue that most firms grapple with is the make-or-buy decision. Until recently, few vendors have offered off-the-shelf firewall systems. Hence, in the past, construction of firewalls required a significant amount of corpo-rate time and effort, and most firewalls were handcrafted by site adminis-trators. With more choice in the marketplace, managers need to be careful in selecting a firewall solution and need to evaluate the trade-off between ease of use, ease of administration, and data security.
Frequently, technical design of the firewall is dictated by financial con-cerns about the costs of buying or implementing a firewall. For example, a complete firewall product may cost anywhere between $0 and $200,000. At the low end, configuring a router will cost staff time. Implementing a high- end firewall with specialized proxy servers might cost several months of programming effort. Managers must also consider the costs of systems management and evaluate firewalls not only in terms of immediate costs, but also in terms of continuing maintenance costs such as support and soft-ware upgrades.
Firewalls also present capacity management problems. For instance, in companies that use the Internet a lot, firewalls represent a potential bottle-neck, since all connections must pass through the firewall and, in some cases, be examined by the firewall.
Finally, firewalls present content management and control problems.
Who manages the information on a firewall?
Is it the function of the MIS department, marketing communications, or should it be left to the func-tional units? This is a tricky problem because for large firms, content man-agement is a function of the marketing communications department, which zealously guards against any effort that may affect the corporate image. In such a scenario, functional units would have to approach marketing com-munications for clearance and approval before placing anything online. The approval process is bottlenecked and could result in delays of several weeks. In the meantime, the functional units are getting worried because the content is getting dated and would have to. be updated the minute it is approved: a classic “Catch 22” situation. Addressing control issues will re-quire serious thinking about delegation of authority, organizational struc-ture, and content management.
what is this all about?
ReplyDeleteWOW really nice article you write great job well done keep it up thanks
ReplyDeleteVery nice article and the website is https://onlinecrack.org/
windows-firewall-control