The Channel logo
Posted in Spreadsheet security? What spreadsheet security!
Posted Friday 6th April 2007 13:53 GMT
Dillon Pyron

Security is ...

Confidentiality, Availability, Non Repudiation, Integrity. As a security professional, this is the mantra I (and most of the industry) preach.

What I like (on cursory examination) is the possibility of assigning rules to spreadsheets that haven't even been created. That's a boon to those who have to manage the security of these files. What I suspect doesn't work, although the article talks about it in a roundabout fashion, is the transfer of cellular security. But access control to the actual spreadsheet is a good first step.

However, the stumbling block is that someone, perhaps the creator, must apply internal security. So the security manager has to personally touch every new file anyways, since I don't trust the creator to adequately set up permissions and ACLs.

dillon, CISSP, in Tejas

Forums

Forgotten password

Opinion

David McLeman

How I went from Unix engineering to flogging Google apps
My 25 years of comical IT buzzwords
euros_channel_money

Tim Worstall

Why on Earth is Microsoft moving to Euro pricing now?
Time to take a sniff at the coffee, perhaps
joe_tucci_emc_channel

Chris Mellor

EMC's hunt for Joe Tucci replacement continues
Will they have to drag him back like last time?
chain_relationship_channel

Peter O'Neill

Some vendors know how to treat a channel
Are you getting what you want?

Features

cloud_accounting
Reg readers love Private Cloud (true)
Playing the SLA long game
channel_teaser_money_top
IT distributors: The only people adding value to the world economy
More than just middlemen...
cloud computing Fight
The Great El Reg Private Cloud survey: Results are in!
Applications must work for the cloud to float
Paul Cormier, Red Hat
Red Hat hits 10-year, $1bn Enterprise Linux birthday
How a Unix killer crawled from the dot-com bust