Corporate Privacy
Letter From the Editor
Vic Wheatman 
23 October 2001

As individuals, we react strongly when our personal privacy is violated. The violation could be as dramatic as having your identity "stolen" by someone who uses your good name to rack up credit card charges. It may be as subtle as someone accessing your medical records and selling your name so you are targeted by marketers of a new "wonder drug" that promises to cure your particular malady.

As enterprises, privacy violations may be less personal, but harmful nevertheless. Customer preference information can be stolen for competitive gain by rivals. Information freely distributed by an enterprise can reveal corporate secrets when used skillfully by competitive intelligence analysts. Intellectual property representing the enterprise's future can be stolen. Disgruntled systems administrators can access sensitive databases for nefarious purposes. Although cryptography can help protect enterprise assets, there is a renewed effort by governments to regulate and control the ability to "scramble" secrets.     Read More


  
 Corporate Privacy: Protecting Information Assets
23 October 2001
Vic Wheatman  Arabella Hallawell 

It is critical to protect and control corporate information assets and their use. Corporate privacy rules, responsibilities and technologies are emerging in a conflicted business and political environment.
   Understanding and Managing New Corporate Privacy Risks
19 October 2001
Arabella Hallawell 

Enterprises will lose control of their most-important information assets if they do not redefine how they protect data and content in everyday systems.

   There Are No Secrets: Social Engineering and Privacy
22 October 2001
Rich Mogull 

Social engineering attacks on enterprise security systems use a combination of interpersonal skills, research and technical know-how to exploit human nature to breach corporate and personal privacy.

   Protect Against Social Engineering Attacks
22 October 2001
Rich Mogull 

Attackers can use social engineering principles to avoid security systems by manipulating enterprises' employees. To prevent this, enterprises should follow these guidelines.

   Competitive Intelligence:'Loose Lips Still Sink Ships'
8 October 2001
Richard De Lotto 

Most enterprises freely give away information useful to their competitors. Damage can be reduced without impeding the appropriate distribution of data.

   Digital Rights Management (DRM) Software: Perspective
3 October 2002
Ant Allan 

Digital rights management (DRM) software offers persistent protection of intellectual property. But the technology has been slow to mature and DRM may not develop as a separate software market.

   Host Encryption Options
15 October 2001
Vic Wheatman  William Malik 

E-business requires secure communications and secure databases — even when the parties are using traditional, mainframe-based systems. Sometimes access control is not enough.

   The 'Crypto Genie' Won't Go Back In the Bottle
15 October 2001
Vic Wheatman  John Pescatore 

Attempts to legislate backdoors into encryption systems add little value to anti-terrorist efforts and undermine efforts to keep the Internet safe for consumers and e-business, and to protect corporate privacy.