Why is it so important to have a specific security policy that covers the use of VPN?
With the increase in number of individuals required to work remotely for both private and government agencies have brought about the need to connect to work servers from remote locations. Connecting remotely to a server has become a security issue over the past years due to an increase in cybercrime, where cyber criminals and malicious individuals have successful exploited the vulnerabilities in remotely connecting to servers. A security solution introduced by security personnel and professional is the use of VPN (Virtual Private Network) to securely connect remotely to systems and servers. VPN adds some level of encryption and security (SSL/SSH) to the connection during remoting logins. This encryption helps secure communication between the computer and the server trying to be reached. It is important to have specific security policy to cover or govern the use of VPN in order to reduce the exposure of the corporate network to the outside world. Although VPN uses encryption to secure communication for remote access, there are still lot of security flaws and vulnerabilities that can still be exploited is the VPN configuration is not properly setup or implemented and that is why using certain policies will/may mitigate or minimize attacks caused by not properly implementing a VPN service. Some of the best practices that maybe included in security policy for use of VPN are:
•…show more content… • Don’t encourage BYOD (Bring Your Own Device) for individuals that will be connecting with the VPN for businesses. Rather, all hardware should be issued by the organization and should be admin locked down to deny standard users from adding or removing computer program or making certain high-level changes that may affect the use of
