Computerworld
Home News Blogs ReviewsWhite Papers Newsletters IT Careers

resource center


Ads by TechWords

See your link here

Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 
 

Print edition

Insider Monitoring Seen as Next Wave in IT Security

Companies say they must now automate network security and data protection

By Dan Verton
March 19, 2001 12:00 PM ET
Recommended
(0)
Digg
Share/Email

Computerworld - "Ramon" was an intellectual of sorts, highly educated, conservative in his politics, painfully introverted, somewhat arrogant and, according to some who knew him, kind of a geek.


He was an expert programmer who preferred communicating with associates through e-mail rather than in person. He even hacked into his employer's computer system without permission to show management that there were serious security gaps that needed to be fixed.


But somewhere along the line, Ramon's career faltered, and he became frustrated and contemptuous of his employer. And since his arrest on Feb. 18 for selling classified information, Ramon, also known as Robert Philip Hanssen, has been at the center of the worst insider spy case in FBI history.


However, the Hanssen case isn't unique to the government, say experts. The private sector is at risk from similar perpetrators. And there are characteristics shared by disgruntled insiders that, combined with circumstances like pending layoffs, can send those with trusted access to the dark side of IT.


A study conducted by psychologists at Political Psychology Associates Ltd. in Bethesda, Md., found that most cases of insider abuse can be traced to individuals who are introverted, incapable of dealing with stress or conflict, and frustrated with their jobs, among other factors.


The behavioral research firm also pointed out, however, that many honest people share these traits. Experts, therefore, recommend tight controls on information access and monitoring tools that can catch insiders in the act.


"Often, there are feelings of betrayal and grudges," particularly during times of financial hardship at companies, said Eugene Schultz, an engineer at Lawrence Berkeley National Laboratory and an adjunct professor at the University of California, Berkeley. "There's no question that there is a link between insider activity and bad times at organizations."


For example, FBI agents at the New York field office had complained prior to Hanssen's arrival about the high cost of living, which led them to express concern about spying for financial gain. They may have been correct, as Hanssen is alleged to have asked his Russian handlers for diamonds to provide for his children's futures.


Schultz, who has written a study on the corporate use of "honey pots" - phony servers populated with false data designed to attract hackers—for Recourse Technologies Inc., a security software firm in Palo Alto, Calif., also said there's a clear link between job roles and insider activity. Surprisingly, systems administrators, network security personnel and senior executives are often the culprits.


Recourse Technologies CEO Frank Huerta recently conducted a live demonstration of his company's Mantrap honey pot software during a sales call at a major computer manufacturer. Within 30 seconds, a member of the company's network security team attempted to hack the honey pot server.



Recommend Digg Twitter ShareThis
Email Print Send Feedback Reprints

Additional Resources

POLL RESULTS
Leading IT Pros Weigh In on Top IT Issues
Accelerate your knowledge of the IT world you inhabit by viewing the results of a series of polls taken by your IT peers. These polls of 100+ IT professionals each are available for full viewing. They cover key topics such as virtualization, processor performance, green IT, cloud computing and many others. Be a part of the buzz.
WHITE PAPER
For Best Results, Think Beyond the Box
Technology is complex. Keeping it running productively shouldn't be. To that end, you want to minimize the number of solutions needed in-house to simplify operations, maintenance, and support. Kodak offers a best-practices model. One company provides support for both scanner and software, for fast problem resolution without vendor finger-pointing. Download now!
WHITE PAPER
Accelerating the Path to Demand Intelligence with a Demand Signal Repository
Utilizing demand intelligence improves the precision of pricing, product assortments, channel/store placement, and promotion, which are all essential for sustainable revenue management performance. Learn more, download this free whitepaper today.

White Papers & Webcasts

File Integrity Monitoring: Secure Your Virtual and Physical IT Environments
Learn how integrity monitoring software solutions enable IT organizations to achieve and maintain configuration control. Tripwire® Enterprise is the first solution to effectively...  

Managing And Protecting Your Ever Increasing Mobile Assets
(Source: Absolute Software) Your users are becoming more mobile each day. This is great for productivity - yet challenging for IT control. Natalie...

Differentiating With Technical Support: JBoss Customer Support Study
JBoss' expert technical support services is clearly acknowledged by its client base. The comprehensive nature by which their service is unsurpassed. Every category...  

IDC Webcast: Linux Adoption in a Global Recession
Join Al Gillen from IDC and Michael Applebaum from Novell in this on-demand webcast to see how Linux has emerged as an even...

The JBoss SOA Assessment Tool: Spend Less, Do More
SOA does not have to be overly complex or expensive. The JBoss SOA Assessment Tool can help you chart a course to a...  

Novell Opens PR Video
Is the Linux desktop for me? Customers are looking for ways to be more flexible and save money. Using Linux offers a great...

The CIO's New Guide to Design of Global IT Infrastructure
Is it possible to eliminate the impact of distance? This paper explores the 5 key principles successful CIOs are using to redesign IT...  

2 Minutes to IT workload automation
Take just 2 minutes to watch this short CONTROL-M flash video. Well show you how BMC CONTROL-M can put money back into your...

IBM Lotus Notes Performance Brief
This is a Performance Brief that illustrates how Riverbed Steelhead appliances accelerate Lotus Notes R7....  

Security Configuration Management
In this web video, follow along with Jim Hansen, Senior Product Manager with Big Fix, as he explains why Security Configuration Management is...

All White Papers | All Webcasts

Computerworld Reports

An Interactive eBook: Enterprise Security

The Business Case for Server Virtualization

Computerworld Technology Briefing: Intelligent Users Use Business Intelligence

All Computerworld Reports
 
About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map
CIO Computerworld CSO DEMO GamePro Games.net IDC IDG IDG Connect IDG Knowledge Hub IDG TechNetwork IDG Ventures
IDG.net InfoWorld ITwhitepapers ITworld JavaWorld LinuxWorld Macworld Network World PC World The Industry Standard
Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.