Login, change your address, subscribe to new or manage current magazines or e-newsletter subscriptions

IT World Events

Site Map - Affiliates

Computerworld Publication Page

NetworkWorld Publication Page

CIO Canada Publication Page

ITJobUniverse.ca
- The Information, Communication and Technology (ICT) Job Board

Enter your

QUICKLINK number to go directly to that article.

Advanced Search

Knowledge Centres

	Content Types
Knowledge STORE MeasureIT Benchmark Metrics Webcasts Blogs Salary Calculator Video Library IT World Canada Technology News Slide Show Library White Papers Product Reviews Careers ITWorld Canada RSS Feeds

	Featured White Papers
Gartner Research Note "Boost SharePoint Performance with an Application Delivery Network" Provided by: Citrix read more
From fear to value: CIO strategies for propelling business through the economic crisis Provided by: IBM read more
Reaping the rewards of your service-oriented architecture infrastructure Provided by: IBM read more

Yuk it Up

Featured White Paper

PRODUCT BRIEF: Enhance and secure critical business operations with end-to-end, business-driven security solutions

Ensuring that IT security is delivering true value to the organization requires approaching security through a business lens, with the ability to span operational silos and IT domains to secure your critical business processes across the organization. Read on to learn how to help mitigate enterprise security risks by leveraging IBM solutions to drive business innovation and success, while reducing complexity and costs along the way.

IT World Canada Blogs

Security Insider

Keep up with breaking news on worms, trojans, spam and other threats to your corporate network and hear about the best practices in risk management from some of Canada's leading experts.

Salary Calculator 2009

Computerworld Canada Salary Calculator 2009

Check out Computerworld Canada's 2009 Salary Calculator. Access up-to-date information from our 2009 IT Salary Survey, including salaries, cash bonuses, and percentage increases over 2008.

Featured Spotlight

Layoff Resource Centre

Keep up on who's hiring, who's downsizing and how the government is helping. News, job opportunities, recruiters and employment lawyers are all available.

Security

Security Products, Practices and Infrastructure

Sign-Up for

Security

eNewsletter Delivered Weekly

Guest Pass

Page 1 of 1

Digg it Twitter

Raising the red flag on Web 2.0

By: Mari-Len De Guzman - CIO Canada (01 Sep 2007)

The move towards Web 2.0 technologies may well be another race between functionality and security, and for now at least, security seems to be at the tail end.

Security professionals are raising the red flag on the increasing pervasiveness of Web 2.0 technologies in the enterprise, saying that while it offers the benefit of rich applications, the risks associated with Web 2.0 can no longer be overlooked.

In the enterprise, for instance, a Web 2.0-enabled architecture involves applications built as Web services that provide cross-platform access and functionalities for users. “Like submitting a record to a database or changing a piece of data (for example),” says Oliver Lavery, a consultant with Toronto-based IT security firm Security Compass.

“The problem is that what’s being exposed there are very detailed, technical procedure calls — Web service calls — using all these new technologies that haven’t really been tested and [the industry doesn’t] have a lot of experience securing them,” Lavery says.

The increasing use of these new tools, without proper understanding of the security issues that may arise as a result, is giving attackers new avenues to explore, says Lavery.

Web 2.0-enabled social networking sites present another attack vector for the bad guys, as well. Web sites such as MySpace and Facebook have allowed people to actively interact and connect in real-time in ways they have never been able to before.

On the surface, the Web 2.0 craze may seem like a consumer phenomenon. But many security experts agree that its pervasiveness is going beyond people’s homes and into the workplace, as employees access these sites from their office computer.

“The most dangerous part of any computer system are the people who run it,” says University of Calgary professor Tom Keenan.

The use of mobile devices, like laptops that typically travel back and forth between the home and office, is not helping the situation either, added Keenan, who is also the IT security spokesperson for the Canadian Information Processing Society. 071496

Sign up for our IT World Canada Newsletters .

Page 1 of 1

Send to a Friend

Rate This Page

Print This Page

Add a new comment

Bookmark this article on:

del.icio.us| Digg it| Furl| Google| Technorati| StumbleIt| Yahoo!

Have something to say about this article?

Add a new comment

If you find a comment inappropriate, You can notify the moderator by clicking the Report an innapropriate comment

Report an innapropriate comment

icon.

ADD A COMMENT


	Related Content

		Articles Why security should be mundane (06/02/2009) Mistakes, not insiders, to blame for most breaches (04/16/2009) FRANKLY SPEAKING: Security the obstacle to cloud adoption (05/15/2009) Events Energize IT

White Papers

Improving business through smart energy and environment policy

Businesses and public entities today face increasing pressure to develop policies that are both good for the planet and good for business. A framework developed by IBM offers businesses and other organizations a comprehensive approach to energy and environmental issues. The framework helps identify and prioritize environmental efforts by breaking down problems and opportunities into seven distinct business areas, which can then be segmented into manageable projects.

Copyright Information

Reprint Services

ComputerWorld Canada | NetworkWorld Canada | CIO Canada | IT Business | CDN | Direction Informatique | PCWorld Canada | Macworld Canada | IT Job Universe | my IT Vendor

©2009 ITworldcanada.com All rights reserved.