Internet and Wireless Security

C J Colwill, M C Todd, G P Fielder and C Natanson
BT's Information Assurance Programme (IAP) aims to improve the state of preparedness to counter the emerging threat of malicious electronic-based attacks on our critical assets by protagonists with a high level of capability. As such it is directed to understand, identify and minimise the risk to our own enterprise and our customers' enterprises from the threat posed by the deliberate, unauthorised and systematic attack on critical information activities. Such attacks would be designed to exploit information, deny or affect service to authorised users, or to acquire, modify or corrupt data, and will be executed by capable, resourced and motivated perpetrators. Reaction to such attacks applies equally to BT's networks, the services it supports, and to its customers and the services they contract from BT, together with considerations of the communications infrastructure within the UK. This chapter will explain in more detail how the IAP operates and the benefits that it provides to BT and its customers. Detection and reaction processes to attacks are essential and the IAP is building upon the internal expertise in this area and BT's computer emergency response team (CERT).
The way companies conduct business today is changing rapidly as we move into a networked economy and infrastructure of 'eCommerce', 'eBusiness' and 'eGovernment', where the Internet is ever present. Business paradigms are changing and the integrity of systems and solutions and their...