Everand Logo

Welcome to Everand!

  • Discover millions of ebooks, audiobooks, and so much more with a free trial

    Only $11.99/month after trial. Cancel anytime.

    Threat 2.0: Security and Compliance for Web 2.0 Sites
    Threat 2.0: Security and Compliance for Web 2.0 Sites
    Threat 2.0: Security and Compliance for Web 2.0 Sites
    Ebook100 pages54 minutes

    Threat 2.0: Security and Compliance for Web 2.0 Sites

    By Alan Calder

    ()

    Read preview

    About this ebook

    This pocket guide will provide you with an invaluable introduction to the security and compliance issues surrounding Web 2.0 technologies. It includes a programme of best-practice steps you can take to manage the risks involved with Web 2.0, together with advice on how to ensure your organisation stays on the right side of the relevant privacy and data protection requirements.

    LanguageEnglish
    Publisheritgovernance
    Release dateJan 15, 2009
    ISBN9781849281249
    Threat 2.0: Security and Compliance for Web 2.0 Sites
    Author

    Alan Calder

    Alan Calder is a leading author on IT governance and information security issues. He is the CEO of GRC International Group plc, the AIM-listed company that owns IT Governance Ltd. Alan is an acknowledged international cyber security guru. He has been involved in the development of a wide range of information security management training courses that have been accredited by the International Board for IT Governance Qualifications (IBITGQ). He is a frequent media commentator on information security and IT governance issues, and has contributed articles and expert comment to a wide range of trade, national and online news outlets.

    Read more from Alan Calder

    Related to Threat 2.0

    Related ebooks

    Security For You

    View More
    View More

    Related podcast episodes

    Related articles

    • Article

      Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL

      Sep 21, 2016

      Data breaches can have far-reaching repercussions; protecting against them is a companywide mandate

      2 min read

    • Article

      Digital Trust Is On The Horizon

      Mar 1, 2022

      Digital Trust Is On The Horizon
      11 min read

    • Article

      References

      Jan 25, 2021

      1 “COVID-19 and the world of work. 6th edition,” International Labour Organization (ILO), 23 September 2020 2 “Working during COVID-19,” European Foundation for the Improvement of Living and Working Conditions (Eurofound), 13 October 2020, https://ww

      1 min read

    • Article

      Creating a Cybersecurity Checklist

      Aug 25, 2021

      Cybersecurity technology has experienced a tremendous surge in consumer interest in 2021 that has shown no signs of slowing down. The trend is largely because developers are introducing numerous innovations in this realm, at a pace that meets market

      4 min read

    • Article

      A MATTER OF IoT

      Oct 21, 2018

      A MATTER OF IoT
      9 min read

    • Article

      Editor’s Note

      Aug 2, 2021

      Dear Readers We are delighted, once again, to bring you the August edition of Techfastly. We have focused on healthcare technologies for this edition. The advancement of healthcare technologies is helping the healthcare industry in various important

      1 min read

    • Article

      How It Secures The Data?

      Jul 1, 2021

      How It Secures The Data?
      1 min read

    • Article

      The Global Data War Heats Up

      Jun 26, 2019

      The Global Data War Heats Up
      5 min read

    • Article

      All Change – But Which Platform? Confronting Shift In The Telecom Sector

      Nov 25, 2021

      Q Thank you for joining us today, Mr Peters! Would you mind giving us a little backstory on how your interest in telecommunications came about? A My college background (Fairfield University) was in physics and neuroscience, so my introduction to tel

      8 min read

    • Article

      Data Security Standards

      Aug 24, 2021

      A lot of engineers like to rail against standards as pointless box-checking and in some cases they are. Especially when it comes to things like PCI-DSS. Fundamentally, any engineer can look at PCI-DSS and say honestly that it’s obvious, and that all

      1 min read

    • Article

      The Next Foundation

      Dec 12, 2019

      The Next Foundation
      4 min read

    • Article

      Finding True North

      Sep 9, 2019

      Finding True North
      8 min read

    • Article

      Global Cybersecurity Guide For Directors

      Apr 25, 2021

      Cybersecurity failure is a “clear and present danger” and critical global threat, yet responses from board directors have been fragmented, risks not fully understood and collaboration between industries limited, according to the World Economic Forum.

      2 min read

    Related categories

    Reviews for Threat 2.0

    0 ratings

    0 ratings0 reviews

    What did you think?

    Tap to rate

    Review must be at least 10 words

      Book preview

      Threat 2.0 - Alan Calder

      978-1-849281-24-9

      FOREWORD

      Web 2.0 – a widespread series of developments in the way websites are designed and accessed, and more widely known as ‘social networking sites’ – is a new and exciting way for websites to work. The extent to which Web 2.0 sites (such as Wikipedia, FaceBook, and YouTube) also rely on user-generated content adds to their immediacy, excitement and relevance.

      Web 2.0 sites do, however, come with their own set of risks – risks to users, to their confidential information, and to associated parties. It is not unusual, when technology is evolving so quickly, and is subject to such rapid take up, for such security risks to be bypassed – to the detriment of users.

      This book is probably the first book on this subject to be published; it has its origins in the detailed research which we did into Web 2.0 during Autumn 2008 and provides organisations with core guidance on how to ensure that their websites remain secure – and comply with the rapidly evolving regulatory requirements that cover personal data and computer security.

      CONTENTS

      CHAPTER 1:

      WEB 2.0

      There is no doubt that Web 2.0 technologies bring many benefits. For example, the viral nature of Web 2.0 technologies such as social networking is an extremely powerful tool, which can be used to engage a large number of Web users very quickly for collaborative, knowledge sharing and networking purposes.

      However, the interactivity and openness of Web 2.0 technologies in themselves also create risks. Sophos have reported that there has been a phenomenal growth in web threats over the last year¹. Malware is present not only on malicious websites, but there is also a growing number of trusted and reputable websites which are compromised. For example, in April 2008 the Cambridge University Press website was compromised². Visitors to its online dictionary were subject to attempts to run an unauthorised hacker’s script on their computers.

      The risks from Web 2.0 technologies are compounded by the exponential growth in the volume of web-based personal data. In addition, the time lag between the fast moving pace of Web technology development and the speed at which legislation evolves means that complying with legislation can be complex and unclear.

      ¹ Mid-Year Report: Malware, Spam and Web Threats in 2008, Mike Harris, Sophos (2008).

      ² Security threat report update, Sophos (July 2008).

      The benefits of Web 2.0 technologies

      The business benefits of Web 2.0 technologies include:

      The central, online storage of documents enabling increased collaboration and group knowledge in real time and across geographic boundaries.

      Improved and more interactive relationship with customers.

      Increased vertical networking among colleagues in larger organisations.

      Improved communication.

      Improved partnership working.

      Incentivised working conditions for the younger members of the workforce.

      The following sections detail the ways in which Web 2.0 technologies can be used to provide benefits in specific business areas.

      Product innovation: increased efficiency and cost savings derived from the speed of sharing, combined with enabling a central location for sharing files and drawings. Collaboration tools also enable employees to be tapped for ideas which are then hosted and developed in a single virtual location.

      Sales, marketing and market research: the main benefit of these tools for sales and marketing and market research is in lead generation and brand awareness.

      Video, blogging, social networking, forums and videoconferencing all enable customers to be tapped for ideas, feedback, preferences and recommendations which can then in turn be used to advertise products and feed the marketing and sales process. For example, Amazon has a function on their website that suggests, based on one’s previous purchases, ‘other products which you might like to buy’.

      Production: Web 2.0 tools such as wikis and collaboration tools can be used to gain and generate input from a wide number of employees, which is available to view in a central place.

      HR processes: Web 2.0 technologies, particularly interactive videos, can also be used for employee training.

      Enjoying the preview?
      Page 1 of 1