Wednesday, 10 December 2008

Mobile Security..we always do the same mistake

I have spent a good deal of today talking to a frustrated system admin providing arguments of why it is not a good idea to open holes in firewalls because the CEO wants to read e-mails on his mobile phone. (Another good example how hard it can be for the business side and the IT side of a company to communicate.)
Sometimes I wonder why we do the same mistake over and over again. We buy point products to solve point problems. We then end up with an infrastructure which cannot be managed and is costly to run.
My argument is always the same when it comes to mobility: treat it as any other access form, use a proper VPN with 2-factor authentication, NAC and granular access control.

No comments: