In message <[log in to unmask]>, at 23:07:19 on
Thu, 6 Mar 2008, Jethro R Binks <[log in to unmask]> writes
>On Thu, 6 Mar 2008, Roland Perry wrote:
>
>> > 1) Create a policy that NO USB (etc) memory devices except those that
>> > are standard issue will be allowed on the premises
>>
>> The normal reason for this is to prevent people inadvertently importing
>> a virus (or whatever) inside the corporate firewall. Which is a laudable
>> aim, but also needs to think about other aspects like: If you allow
>> standard issue ones *off* the premises, they might come back infected.
>
>Not permitting such a device onto premises at all seems draconian for most
>average workplaces. Maybe you have after-work business for which it is
>required?
The workplace (or somewhere you visit) has a policy of not letting
certain things onto the premises (I could name several that don't allow
mobile phones) they should have a secure storage system available at the
reception desk.
>And I have never yet seen a virus (or whatever) jumping from a
>device to a computer without physical contact.
[If you worry about such things] Normal practice is to stop people
bringing items onto the premises, rather than hoping they don't insert
them into PCs.
>Maybe you might have a policy that says you can't *use* home devices in
>work computers, but Roland's point still stands. I guess any such the
>policy would also have to say that work-issue devices can't be used at
>home. And since transporting files to and from home is probably the main
>reason for having them in the first place, it seems rather self-defeatist.
Ignoring the data-loss-at-home issue, one way to stop people bringing
dubious hardware onto the 'secure' LAN is to say that all laptops must
be attached to an 'external' or Guest LAN, even when on the premises.
Such a thing can still be encrypted and password protected, but
nevertheless outside the firewall. Of course, this assumes that
employees have a way of connecting in from 'outside'.
>> > 2) As part of that policy, state that the contents of any such devices
>> > found on the premises WILL be inspected and that any content found to
>> > be unlawful will be reported to the police.
>>
>> Maybe I've led a sheltered life, but what are these illegal things that
>> people apparently carry around on memory sticks? And why on memory
>> sticks especially?
>
>If you're dealing with "illegal things", it behooves you well to be
>careful and not lose them,
But that still begs the question of what forms of illegality are
involved here, and why someone would be using a non-work USB stick to
store them if it was a necessary part of their job to be toting illegal
things around at work.
--
Roland Perry
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at http://www.jiscmail.ac.uk/help/commandref.htm
Any queries about sending or receiving messages please send to the list owner
[log in to unmask]
Full help Desk - please email [log in to unmask] describing your needs
To receive these emails in HTML format send the command:
SET data-protection HTML to [log in to unmask]
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|