Most small business networks are setup in an exceedingly peer-to-peer (P2P) format. In contrast, large company networks are setup in a domain format. What does this mean to you?
First, allow us to define the two network formats. In a very P2P format each PC is accountable for its own security access. Essentially, every PC is equal to each different PC within the network. These networks usually carries with it less than 10 computers and need a large quantity of administrative overhead to perform securely.
During this format the attitudes of the user population is of prime importance. If they have a high level of security conscience then your network can be a lot of secure, if they don't your network can be wide open to insider exploitation.
You'll see the problem. 10 computers and ten directors equal very little accountability.
In a domain system there is a single purpose of administration, your network administrator. He is responsible for maintaining the network.
A network setup in this format consists of a minimum of one server, a website controller, to administrate the remainder of the network. This domain controller manages user and computer access, releasing the network administrator from the need of touching each PC within the network.
When a user logs onto her PC in a P2P network she only authenticates on it, in a domain system it is a very little a lot of complicated.
In a domain system she logs onto her pc, her login ID is first checked with the domain controller. If it's found she is granted access to the network resources assigned to her. Then she is allowed to go online to her desktop. If her ID isn't found then she solely has access to her native PC.
Now that you recognize a very little regarding the 2 network structures you'll see the advantages of the domain design.
As stated earlier this format requires designing to achieve. You want to sit down and outline what you want your network to accomplish.
Consider what access your users really want to try and do their jobs. In the computer security world this is often called granting the smallest amount quantity of access required to try and do the job. Do your sales reps extremely need access to your financial files? What regarding external vendors?
All of this desires to be thought out and addressed.
Here's an example of how I setup a little sales organization. This business consisted of regarding eight workers and also the 2 owners. With the help of the house owners we tend to defined three user groups.
The homeowners group was granted full and complete access, while every of the opposite groups received lesser and completely different accesses. The admin group received access to the money and administrative functions, and also the sales teams receive assess to the sales and customer management data. Specifically, they were excluded from the money and administrative and the owner's functions.
Additionally, we setup auditing of both successful and unsuccessful tries to read certain sorts of data. We tend to did this to add a layer of accountability to the network. This will increase the safety of their customer's knowledge as a result of we have a tendency to will now tell who and when the information was accessed.
Network security personnel know that almost all network security breaches occur from the inside!
In my experience most small businesses use the P2P format because it is the best to implement and as a result of they don't recognize the security compromises they are working under.
This will be a ticking time bomb for your business. Eventually, you will expertise a security lapse that might land you in court.
For instance, you have got an employee leave your business. This employee downloaded all your client data before he left. Next, he sells this knowledge to someone who uses it to steal the identity of several of your customers. Eventually, this theft is discovered and traced back to your employee.
Your former customers in totally justifiable outrage take you to court charging you with negligence. Specifically, they hold you responsible for failing to safeguard their personal information.
Your case can be a lot of stronger if you'll show you have got positive management of your network. You can point out your security procedures. Employee logon auditing, security updates, acceptable use agreements, etc. Briefly you'll be able to show that you have got taken the steps that a cheap person would take to secure your network and client data.
Hopefully, your lawyer will then place the blame directly where it belongs. On the worker who stole the data in the first place. Ask your attorney concerning this! Don't simply take my work for it, I'm not a lawyer.
Remember, network security may be a result of through planning, not hap hazard improvisation. Give your network the same attention you offer to the remainder of your business.
If you are doing not have the abilities or the time to be your own network administrator, you'll contract with somebody to handle this for you on a part-time basis. Simply create certain they're reputable, you are putting your business in their hands.
Author Resource:-
Link :
Aaron R Daniel has been writing articles online for nearly 2 years now. Not only does this author specialize in Networking, you can also check out his latest website about:
![[Valid RSS feed]](http://article2008.com/images/feed-icon.png "XML Feed For RSS"){kind=icon}
![[Valid RSS feed]](http://article2008.com/images/icon_Rss.png "XML Feed For RSS"){kind=icon}
Category Rss Feed
Print This Article
Add To Favorites