Progress REPORT no. 5
 
 

 

In this article, we introduce a special interest group that is concerned about e-commerce and security matters. 

You can join this e-group FREE. 

David Spinks, who runs the group, wrote the article and summarises what the group does and explains both how you can join and how to contact him to find out more.

The group is called:

E-Com-Sec

(There is no commercial connection between E-Com-Sec and Progress Consulting Group. Any correspondence about this article should be sent to David Spinks). 
 
 

E-Commerce Security - Special Interest Group
________________________________________________________________________

This is your opportunity to join hundreds of e-commerce and security professionals, to share information via email and have access to the group’s documents such as Best Practice Guides and White Papers.

Recent topics under discussion include:

UK Government consultation on RIP law

At the end of July 2000 the UK's “Regulation of Investigatory Powers (RIP)” Act finally received Royal Assent and so became law. This is a highly controversial piece of legislation that has had a bruising passage through Parliament, being denounced by commentators from all three main political parties, as well as those in the IT industry, business at large, and civil liberties groups. It is worth studying because, as written, it will have very significant implications for use of the Internet in Britain.

BS7799 and Legal Issues

The British Standard (shortly to become an ISO international standard) for Information Security is emerging as a definition of best practice for the management and control of information security. A large number of organisations across the world have adopted BS7799, though certification to the standard has perhaps not been as popular as the DTI might have hoped. Members of E-Com-Sec have direct and personal experiences of implementation of, and audit against, the standard and their ideas and experiences are shared across the group.

Intrusion Management

The increased use of the Internet has made the implementation of “firewall” technology extremely common. Increasingly, organisations are monitoring attacks on sensitive data and information held within their systems. Such attacks may be from external hackers attempting to penetrate the firewall. But more worrying, and often more difficult to address, are the attempts by staff and others on the ‘inside’ to gain access to information that they have no right to access. Discussions have considered methods for, and the legal implications of, covert monitoring of employees’ email and telephone calls; as well as the possible issues surrounding the admissibility in court of evidence gathered in this way.

Cyber Crime and Law Enforcement

The UK and the USA governments have set up agencies to consider the implications of malicious attacks on computer systems that are essential to run the “National Infrastructure.” Surveys are showing that there is a significant increase in losses due to computer related fraud. However, there are comparatively few examples of cases in which the criminals have been traced and prosecuted. The group has shared, and continues to share, many ideas and experiences to help better understand this issue and to develop strategies that reduce the risks.

Business Continuity Planning (BCP)

Organisations need to prepare for security breaches as a part of their due diligence responsibilities. BCP is a proven methodology for the protection of corporate assets and for providing a means to lessen the impact of unplanned events. E-Com-Sec is proving itself to be a highly respected and valued forum for discussions on this topic and for keeping up to date.

Benefits of E-Com-Sec membership
_______________________________________________

Suppliers Catalogue

This document lists products and services available from vendor members of both E-Com-Sec and its sister the UK Business Continuity Planning group. The catalogue is only available to E-Com-Sec and the UK-BCP members.                        

Sponsored Seminars and Workshops

From March 2000 a number of very successful ½-day workshops sponsored by vendor members have taken place. Guest speakers have included experts on

Penetration Testing

Intruder Detection

Legal Aspects

Alternative Dispute Resolution (ADR).

Events, which have taken place in London, have been well attended with plenty of time allowed for off-line networking.

Discounts on Conferences and Events

Organisers of conferences on commercial information security are regularly willing to offer significant discounts to E-Com-Sec members. In return, we publish to them a directory of speakers. This allows conference organisers to select some of the UK’s leading Security experts from within our membership. 

Why not join free today?

Simply send an e-mail to:

E-COM-SEC-Subscribe@egroups.com

Alternatively, if you need more information about E-Com-Sec, please contact David Spinks at: david.spinks@dspinks41.freeserve.co.uk
 

Managing Change | Better Brochures | Late Payment of Debts | Winning New Customers | E-Commerce Security

Home | The Book | Management Reports |Our Associates | Business Words of the Week
 Text © 2003 Progress Consulting Group
 Contact webmaster
 Web design UK		  
Another website by
Beaufort Web Design UK
   

Web design and search engine optimisation services