Category: Uncategorized

To secure the appropriate space, you’ll need to work closely with the people who are responsible for facilities management in your organization. As long as the locations are well outside the line-of-sight horizon, you can shore up these facilities with extra power and air conditioning, allowing them to find new life as backup data centers.

Or look for new facilities that your company has acquired as a result of mergers or takeovers to house the data centers for DR operations. In many cases, you can find floor space already configured to run data operations, since the acquired company most likely has data centers for its operations that won’t be necessary after the merger is complete.

You can also obtain dedicated space in a colocation facility, along with space to house vital employees during an emergency. The downside is that your company may share this reserve space with multiple companies, operating under the idea that only one of the companies will fail over at any give time.

If the first two options aren’t viable, consider working with another company to share data center space so that both organizations have a location for failover.

No matter how you secure space to house your DR failover, it’s a necessary step in your business continuity planning process.

More info: [url=http://techupdate.zdnet.com/techupdate/stories/main/Address_proper_facilities_in_your_disaster_recovery_plan.html?tag=tu.scblog.6673]http://techupdate.zdnet.com/techupdate/stories/main/Address_proper_facilities_in_your_disaster_recovery_plan.html?tag=tu.scblog.6673[/url]

Others that are not obligated to have them may question whether they need a formal CIRT. Those companies believe there is in-house expertise to sort out incidents, but they should ask themselves whether there is a system to alert the necessary people when an incident occurs.

The first job for a CIRT is to assess the scope of damage and figure out how to lessen it, not necessarily gather evidence. The optimal CIRT would consist of core members from IT auditing, information security and corporate security, in additional to the legal department. Each group brings a different skill set to the team. “If someone questions the CIRT team’s response, then the auditor will make sure the report is auditable,” Poulios said. As such, they should probably handle the evidence gathering so the chain of custody is preserved.

More info: [url=http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci935950,00.html]http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci935950,00.html[/url]

Security issues ranging from misconfigured wireless access points (WAPs) to session hijacking to Denial of Service (DoS) can plague a WLAN.

Wireless networks are not only susceptible to TCP/IP-based attacks native to wired networks, they are also subject to a wide array of 802.11-specific threats.

The standard 802.11 encryption method, Wired Equivalent Privacy (WEP) is weak.

Rogue WAPs can also be introduced by users.

The point is that the threats are real, they can cause extensive damage, and they are becoming more prevalent as the 802.11 technology grows in popularity.

Without some sort of detection mechanism, it can be difficult to identify the threats to a WLAN.

Traditional wired based Intrusion detection systems (IDSs) attempt to identify computer system and network intrusions and misuse by gathering and analyzing data.

More recently, IDSs have been developed for use on wireless networks. These wireless IDSs can monitor and analyze user and system activities, recognize patterns of known attacks, identify abnormal network activity, and detect policy violations for WLANs.

Wireless IDSs gather all local wireless transmissions and generate alerts based either on predefined signatures or on anomalies in the traffic. A Wireless IDS is similar to a standard, wired IDS, but has additional deployment requirements as well as some unique features specific to WLAN intrusion and misuse detection.

A centralized wireless IDS is usually a combination of individual sensors which collect and forward all 802.11 data to a central management system, where the wireless IDS data is stored and processed.

[url=http://www.securityfocus.com/infocus/1742]http://www.securityfocus.com/infocus/1742[/url]