Re: UKNM: Onffsite Applications - Security and trust

[Stefan Magdalinski]

Chetan Damani wrote:

> 

> I am currently doing some work for a telecoms company, and I am more of

> technical security person and they are looking for ideas in the "trust our

> company" field, the company does have a lot of brand, but they want to be

> completely (as close to 100% as possible) secure/trustworthy.

> 

> How can we convince people to move there applications offsite. security and

> trust wise..?

> 

> e.g A knowledge managment Intranet site hosted and managed by an outsourced

> supplier.

> 

> What could you offer that would convince companies that your site(site as in

> real location and people in the site, not a web site) is secure enough and

> you can be trusted..


I usually demonstrate how much more secure the outsourced solution is

than their usually pathetic  internal procedures. 


> Is there any government based security clearance system for companies? like

> they have for contracters/employees..but would that work?


burdensome but insecure. 


> We could have nondisclosure agreements but what do you think would really

> seal it ?


absolutely not.


> any ideas??

> 

> thanks in advance..this is the only place I think I can get any real

> answers..as I posted my question in an NT Security list..and got no where..


first recommendation: if you give more than lipservice to security,

don't use NT.


stefam


-- 

/**

Stefan Magdalinski                     mobile:07931 376142

stefanisness [dot] org

                        boat:0171 7381837   

icq: 5261825                             desk:0171 8876382 

http://www.isness.org/house/boat                       **/ 

********************

UKNM is sponsored by Excite UK, visit us at http://www.excite.co.uk.

Email Khalil Ibrahimi

khalilexcitecorp [dot] com (mailto:khalilexcitecorp [dot] com)

 to advertise on Excite.

********************

Change your UKNM subscription use http://www.chinwag.com/uknm.html