Content area
Full text
ABSTRACT
The Internet has created unprecedented opportunities for both organizations and individuals. However, these opportunities also have created a double-edge sword as organizations attempt to connect trading partners, customers, and remote users while providing adequate security measures that are flexible and cost-effective. This paper explores why secured socket layer (SSL) may be better tool for secured remote access and extranets by comparing it to internet protocol security virtual private networks (IPSec-based VPNs).
INTRODUCTION
The Internet has advanced to where networked systems and software agents are highly depended upon to support the exchange of information between individuals and organizations (Andress, 2000). Network security has become and will remain a primary concern as many enterprise users access corporate resources from cyber cafes, airport kiosks, or even home personal computers (PCs) that information technology (IT) departments often cannot control adequately (Lechner & Hummel, 2002; Nahnybida, 2003; Rubenkinf, 2002; Skoudis, 2005; Sundaram, 2000). In addition, secure network activity is also critical as many firms have extended their network infrastructure to their trading partners, remote customers, suppliers, and consultants. For example, Johnson and Johnson, one of the largest healthcare organizations with more than 200 separate companies located in 54 countries, views one of its biggest e-commerce challenges as providing business partners with access to its network while maintaining a high-level of security (Messmer, 2005). The company must balance the threat of introducing viruses and worms once its business partners are given access to the organization's network. Protecting enterprise data residing in relational databases is a primary goal of information security professionals as they strive to meet the objectives of confidentiality, integrity, and availability of data (Rutrell, 2001).
Although IT can be used to support an organization's goals and provide a competitive advantage, security threats and risks can lead to missed business opportunities or even disaster (Gartenburg, 2005). For example, a report published by Forrester Research, suggests that only 30 percent of the 22,907 Europeans polled said they have confidence that adequate security exists for keeping credit and debit card information used to make online transactions safe. On the other hand, approximately two-fifths of the Internet users polled do not use online banking and have no intention to do so because of security concerns. In fact, Forrester also reported...