The not-so-innocent iPod & USB flash drive

Threats from outside the network perimeter, such as from spam or viruses, have long been recognized as major security issues. But the growing use of mass storage devices in business (such as iPods and USB drives) in the office, means that vast quantities of data can be copied and stolen from inside corporate networks more quickly and easily than ever before.

As such, USB lock down and endpoint security have become major security issues for organizations needing to protect themselves against the threats of ID and data theft. But widespread USB lock down needs careful consideration if it isn’t to do more harm than good.

Five steps to improve endpoint security with intelligent USB lock down
So how do you close down this major security loophole and secure USB ports and endpoints against data theft? The five steps below outline how you can ensure your organization is adequately protected against the threats posed by removable devices:

1. Understand the endpoint security risks
   How many employees use USB sticks, iPods and other portable media devices at work? How often do they connect those devices to the network? Are certain departments more prolific users than others? First, you need to determine how removable devices are currently being used within your organization.
   
   With a free trial of DeviceWall, you can assess the level of device usage in the organization before you define and deploy a security policy.
   
   
2. Review the business requirements
   For a minority of employees, using a PDA to keep track of appointments and contacts, or taking a large PowerPoint presentation to a sales pitch on a USB drive are efficient ways to conduct business. However, connecting an iPod to the network and downloading music almost certainly is not.
   
   The key is to determine what constitutes a legitimate business need by a department or individual employee – whatever activity is not entirely necessary is an operational risk that needs to be addressed.
   
   
3. Create a removable device policy
   Existing ‘acceptable use policies’ (AUPs) may provide some direction on how employees use portable media devices, but are unlikely to provide detailed or enforceable guidelines. AUPs need to be regularly revised to ensure they are current with the business’ attitude towards security. What’s more, employees must be aware of the policy through effective internal communication.
   
   An example of an effective AUP that addresses the need for USB lock down can be found here.
   
   
4. Enforce the policy – intelligent USB lock down
   If there is no electronic enforcement of these written policies, human nature means that breaches will occur. While complete PC lock down is a common method for protecting against USB security breaches, companies must be aware that blanket restrictions of users' access rights will dramatically impact productivity.
   
   Key points to bear in mind when assessing possible options for automating removable device management include ensuring protection against the use of Wi-Fi, Bluetooth and Infrared ports.
   
   However, any tool providing USB lock down must not impede staff from carrying out their daily responsibilities. DeviceWall ensures that individual users have access to the devices they need to use, while automatically blocking all unauthorized connections by default.
   
   
5. Educate, review and repeat
   Don’t leave staff in the dark. Communicate that security software has been deployed to help enforce the acceptable use policy that has been established.
   
   DeviceWall can help you achieve this by delivering configurable messages to users at deployment, logon and when they attempt an unauthorized connection.
   
   Once deployed, it is important to continue monitoring device connections to spot trends and ensure that the policy is consistent with the current perceived level of threat. Again, DeviceWall’s “Connection Auditor” ensures that managers have full visibility of the devices being connected to company PCs and that a full audit trail is maintained for future reference.

Even though internal security has so far been overlooked in many of today’s organizations, it is never too late to take action. Those companies that choose to ignore the threats posed by employee-facing network access points not only risk the loss of intellectual property, but more importantly, the company’s reputation.

Download a free 30 day trial of DeviceWall