Rubrik: World-wide News/Products & News

Cyber-Ark Says FiberWAN Network Lockout Saga Could have been Avoided

Access to Payroll, Law Enforcement Data and Prison Bookings

(25.07.08) - Cyber-Ark, the privileged identity management specialists, says that the ongoing FiberWAN network lockout situation in San Francisco - where a network administrator has changed system passwords and is refusing to hand them over to administrators - could have been avoided if managers had operated a high-security approach to master passwords. "Administration passwords are always being changed for security reasons, such as when IT staff leaves and also for general security reasons. The main problem with admin passwords is that a number of people need access to them at any given time," said Adam Bosnian, VP Marketing with Cyber-Ark.

Anzeige

"If the operators of the FiberWAN network - which gives San Francisco city administrators access to payroll, law enforcement data and prison bookings, amongst other things - had a top-level master password, which was stored securely, then the current lock-out situation would have been side-stepped," he added.

According to Bosnian, the San Francisco FiberWAN chief executive could have stored the top-level master password in a digital vault, meaning that no-one need actually know what the password was, but it could be accessed electronically by relevant senior staff, if the need ever arose.

"Audit logging and alerting technologies documented in the Digital Vault would prevent the master password from being accessed except in absolute emergencies, such as the current situation in San Francisco," he explained.

Bosnian’s comments come in the wake of newswire reports from the US which alleges that a rogue employee - 43-year-old Terry Childs - locked the city's FiberWAN network with his own passwords and has refused to give police or his colleagues the details.

"Childs is reported to have been arrested over the weekend, and is in jail pending a court appearance, but the bottom line is that, whilst the network is functioning normally, IT staff has not got supervisory access, and all due to the actions of a single, rogue employee," he said.

For more on the San Francisco FiberWAN lockout saga: http://tinyurl.com/5w49wx. (Cyber-Ark: ra)

 
 

 

Diesen Beitrag per E-Mail versenden Diesen Beitrag ausdrucken