Following the news that IBM have banned its workers from using USB Sticks and removable media, Jon Fielding, Managing Director at EMEA Apricorn commented below.

Jon Fielding, Managing Director at EMEA Apricorn:

“This would appear to be an extreme reaction from IBM and they themselves admit it is “restrictive”.  They site 2 reasons for the decision; loss and misuse, and the valid concern that either could result in “financial and reputational” damage.  The first concern is addressed by providing corporately approved, hardware encrypted devices to employees that have a valid business justification for their use. IBM, or any company for that matter, should then enforce this policy by locking down all corporate USB ports to only accept the corporately approved device.  Once implemented, they can be confident that any data crossing the USB is encrypted in hardware and, if the device is lost, is unavailable to anyone other than those authorised.

The second reason – misuse, plays to the concern of employees with bad intention.  Banning USBs doesn’t solve this problem as there are many different vectors a determined bad actor can leverage; this would be more about hiring policy and employee validation.”

Experts Comments

Stay Tuned! Our Information Security Experts Community is responding .....

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.