As Internet bandwidth expands and high-speed access becomes more readily available, businesses in every industry are looking to maximize opportunities afforded by this exciting technology. They are providing employees with Internet access to increase productivity, encouraging vendors to purchase and view catalog information on line, and soliciting customers for their web sites to bolster sales. Yet with all of the potential the Internet affords, it also brings a number of inherent risks. Already, 60 percent of computer networks are penetrated more than 30 times per year, according to the most recent FBI Computer Crime and Security Survey. This statistic will likely continue to rise as the corporate world becomes increasingly e-centered. Without ample web site protection, internal and external parties can hack in and manipulate, damage and steal information. In addition, companies can be held liable for their employee's improper use of the Internet. To avoid potential problems, companies must develop and implement a strong Internet security plan. A third-party network support vendor can assist in creating this critical organizational strategy which should always include the installation of an appropriate firewall, the creation and administration of an Internet usage policy, and the formation of a comprehensive disaster recovery plan.

SELECTING A FIREWALL

Most organizations that use the Internet in conducting business today have some type of firewall protection in place, and those without this critical component should consider their options immediately. Ultimately, firewalls are designed to protect a network from outside intruders and to assist in limiting or restricting internal Internet access.

Firewalls come in many shapes and sizes. High-end hardware/software-based products are generally suited for major corporations and financial institutions. Appliance-based firewalls are more economical, geared to small and mid-size companies. Needs vary depending on the type of information that is being protected. For e-commerce companies, effective security is paramount. If clients' bank account numbers, company inventory and customer data are present in a system, they must be safeguarded so that every transaction is secure. Customers, employees and other parties must only have access to appropriate information. If data is extremely valuable or confidential, a company may want to invest in intrusion-detection hardware and software. Even with a sophisticated firewall in place, the possibility exists that a hacker will find his or her way around it. Intrusion-detection software can monitor network flow and use, and can alert appropriate personnel when an unauthorized party is accessing or manipulating data. Companies and their employees should be aware that private Internet accounts within the organization could compromise security, despite the most effective firewalls. If a number of private accounts exist, companies should consider investing in a product that can monitor individual connections.

REMOTE ACCESS

Firewalls generally limit remote access to a network. Yet businesses often have sales representatives and vendors that need to access information. To accommodate this challenge, an external intranet, known as a "demilitarize zone," can be set up outside the firewall, allowing off-site parties to log onto a web site and conduct business. New data is funneled through the firewall into the main network. This provides an ideal solution to conducting e-business while maintaining a level of comfort and protection. To allow unlimited remote access to a web site, companies can create virtual private networks. Ideal for remote sales people, this involves setting up security on a laptop and creating an encrypted tunnel so that the user can bypass the firewall to access the network through any Internet connection.

INTERNET USAGE

Equally important to the presence of a firewall is the development of an Internet usage policy. Companies should begin by evaluating their organization's Internet needs and work with staff to determine appropriate usage. At the same time, guidelines for inappropriate Internet activities should be set in place, as legal ramifications have become quite serious. Companies are being held responsible for employees who access controversial web sites from their desktops and/or staff members who send e-mail with offensive content or attachments. A formal set of penalties for inappropriate use should be outlined and communicated to all staff. In addition, organizations can take a proactive approach to avoiding these issues by setting up their firewalls to block access to inappropriate sites and to scan e-mail and attachments. If a firewall is being installed, employees must be made aware that it is being put in place. They should also be informed that management will be able to monitor their usage, and inappropriate accesses will be red-flagged. Even the best plans, however, cannot be effective unless they are well-administered. Daily Internet activity should be reviewed by a designated party to monitor employee usage and watch for potential problems.

PREPARING FOR A WORST-CASE SCENARIO

Most companies focus on preventing a breech of security, but many do not carefully consider what to do if an unwanted party gets into and damages their data. Preparing for this worst-case scenario is a critical component of a comprehensive security plan. Companies need to consider how they will rebuild their network if it is completely destroyed. They should document critical applications and how they can be accessed quickly. Above all, they should ensure frequent, proper data backup. The Internet will continue to evolve as a critical business tool with unlimited potential. Businesses that proactively avoid the associated risks today will be well positioned to take advantage of tomorrow's exciting electronic business opportunities.

###

Scott Donnelly joined IBS in 1989 and currently serves as Director of Sales and Marketing. Founded in 1979, IBS has evolved from a well-known provider of automated property management and accounting solutions for owners, developers and professional managers involved in residential and commercial real estate, to serve an array of industries. The firm is nationally recognized as a respected provider of in-house computer management systems. Its Network Services team provides custom-designed Windows NT networks, from turnkey installation to project consulting and everything in between. Today, IBS offers a full line of information systems solutions that makes it a leading source for business automation. Every aspect of delivery - from hardware and customized software, to extensive on-site training, to service, support and ongoing system updates ( is provided with an extraordinary level of care.