Websites that did not exist five years ago are now at the top of the most visited and used sites on the Web. Yesterday's teenagers and college students, who have grown up using MySpace, YouTube and other Web 2.0 sites are bringing their social habits into the workplace, and creating a number of challenges for employers.
Dear Readers:The Web continues to evolve. The excitement of the Web as a business platform has spurred tremendous growth in Web products and services that fall under the Web 2.0 umbrella. Today, Internet users are much more involved in the content creation that makes up the online world, and Web 2.0 sites and Clearswift services are being widely used within companies by employees who have learned how to use www.clearswift.com them outside the business arena.Web sites that did not exist five years ago are now at the top of the most visited and used sites on the Web. Yesterday's teenagers and college students, who have grown up using MySpace, YouTube and other Web 2.0 sites are bringing their social habits into the workplace, and creat-ing a number of challenges for employers.As Clearswift has uncovered through a series of surveys and whitepapers, Web 2.0 technology is having a major impact on everything from employee productivity to enterprise security. Through-out this paper you will learn about the benefits, as well as the concerns, of Web 2.0 technology. While some of the benefits of Web 2.0 applications are clear, such as enhancing collaboration among dispersed team members; accelerating search and information retrieval; and building knowledge centers, the challenges of hastily adopting Web 2.0 solutions are also clear. Many of the problems arise as Web 2.0 applications are used without any measure of their impact on the enterprise. Often businesses have little knowledge of how they are being used, how much time employees use them, and exactly what information is being shared. As a result, organizations face compliance and security risks and potentially, lose the benefits of Web 2.0 through a drain on employee productivity. According to Gartner, "The dynamic and distributed nature of Web 2.0 applications means that some new approaches will be required to maintain the necessary level of business strength security" Web 2.0 Needs Security101, John Pescatore, 2 November 2006.As the popularity of Web 2.0 applications has grown, Clearswift, like Gartner, has recognized the po-tential compliance and security threats. And as Web 2.0 has continued to take shape, we have worked hard to ensure that our web security solutions are ready to meet the demands of the enterprise. In this paper, Gartner will discuss the importance of extending Web application security processes and controls to Web 2.0 solutions prior to the deployment of application. We will support Gartner's research and recommendation with Clearswift's experience and examples to provide you a strong overview of Web 2.0, its role in the enterprise and how to safely capitalize on new technology.
Sincerely,
Jon Lee CEO, Clearswift
In this issue
.From the Gartner Files: Web 2.0 Needs Security 101 2.Web 2.0 Makes Inroads in Business 4.Content Security 2.0 The Impact of Web 2.0 on Corporate Security 6.M&C Saatchi Embrace Web 2.0 Technologies; Implement Clearswift's Featuring Research From MIMEsweeper Web Appliance for Content Security 7.MIMEsweeper Web Content Security 8.10 Essential Steps to Web Security 9.About Clearswift 10Web 2.0 Needs Security 101
Ignoring security during the Web 1.0 deployment led to Web site defacement, identity theft and business losses. Building security into Web 2.0 applications should be done before appli-cations are deployed to avoid a negative business impact. WHAT YOU NEED TO KNOW tent comes from users who volunteer to create in searching and accessing data. Data such Deploying Web 2.0 applications without build- or update sections, rather than from a limited, as clickstream or search stream data can be ing security into them will lead to putting centrally selected and audited set of experts. valuable targets for attackers. The integrity of customer data and business reputation at risk. While the wiki approach can lead to broader this data needs to be assured, both during col-Extending Web application security processes and more rapidly evolving coverage of topics, lection and when stored.and controls to Web 2.0 applications should be it has also been vulnerable to misinforma-done before applications are deployed to avoid tion and denial-of-service attacks, as random Security Through Opennessnegative business impact. authors make malicious or specious changes Software and APIs that are designed and built to sections. The Wikipedia has already had to with security in mind, kno... [download for more]
