Wikis are the future, but must be secure
By Asavin Wattanajantra,
The next generation workforce will use wiki-style technology in the enterprise, but the right controls must be in place to keep classified corporate data safe.
This was according to Thomas Daemen, senior attorney at Microsoft, who was talking about the competing tension between privacy law and distributed collaboration in Madrid at ISSE 08.
Daemen referred to Microsoft’s own Sharepoint, but he was also talking about other companies who had their own tools which he claimed had three characteristics – ease of use, decentralised control (not controlled by IT experts) and their vast storage and retrieval qualities.
He warned that from the increased use of this tech there was the danger of losing legacy data out there which could become problematic as large amounts of decentralised data is “shunted” into these collaborative tools.
Daemen said: “As you build into your corporate infrastructure greater search capabilities in the hope and expectation of expanding the use of distributed collaboration tools, you also make it easier for all those employees to access legacy data.
“Don’t forget the history – it will come back to bite us,” he added.
He also said that because tools were so easy to use, groups within the business would build their own internal practices and set their own rules. Instead of the traditional HR and IT mechanisms for hiring and recruiting, it had shifted to much more free and open collaboration.
“For example, a group within an organisation is looking to hire somebody. They may use a distributed collaboration tool as a means of sharing thoughts and comments about the people who are interviewing for that job.”
This new collaborative way of working conflicted with new compliance and data privacy laws that had very specific rules and mandates with more governmental scrutiny.
Daemen said that the resulting problems could be solved by following a find, fix and notify plan – find the private data that has been distributed and hasn’t been locked down, fix the data and lock it down, and then notify people and educate them about the challenges.
advertisement
Latest Security Features
How to be a successful online fraudster
Ever wanted to know how easy it is to be an identity thief and earn a fortune? IT PRO reveals all…
- What you need to know about ID cards
- Lessons to learn from a year of data breaches
- Q&A: DNS inventor Paul Mockapetris
- Is the password ill-equipped for the modern world?
- Why is backing up given short shrift?
- Defending Europe against cyber attack
- The present and future of IT security
- I’m an IT manager, get me out of here!
- IT around the world: Russia
Latest Security Reviews
Fortinet FortiGate-3810A
Rating: 
- Clearswift MIMEsweeper Web Appliance ENW
- NetASQ U6000 UTM appliance
- AVG Internet Security SBS Edition 8.0
- Finjan Vital Security Web Appliance NG-6000S
- LogLogic MX2010
- Exclusive: WatchGuard Firebox Core X750e
- Sophos ES4000 Security Appliance
- Microsoft Forefront Security for Exchange and SharePoint
- EXCLUSIVE: Juniper Networks SSG 550 UTM appliance
advertisement
Latest News Videos in Security
Video: Eugene Kaspersky outlines security threats
PlayIT PRO speaks to Eugene Kaspersky, chief executive and founder of Kaspersky Lab.
White papers
Want more background on today's hottest IT trends?
Visit IT PRO's white paper library for more on virtualisation, encryption and other topics.
Register for IT PRO
You'll get exclusive member benefits including free white papers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
Epok\\\\\\\'s Federated Access Manager
Epok\\\\\\\'s Federated Access Manager solves precisely this problem for Wiki\\\\\\\'s. There is also a version that is specifically designed for Microsoft SharePoint 2007. www.epok.net
By Ip_oscarfuster4b on Tuesday Oct 14