SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

Experience SANS training through course previews.
Learn MoreLet us help.
Contact usBecome a member for instant access to our free resources.
Sign UpWe're here to help.
Contact UsAlthough the technologies change, the same old issues seem to stay around. In the world of computer security, it is often the users with a new 'need' who push the network administrators for fewer restrictions. One of the latest examples of this can be seen in the discussion of whether or not to allow 'mobile code' through the firewall onto a secure company intranet. Users need the tools to complete their work but more and more applications are being built around web browsers using mobile code in to transfer and share information over the Internet. This paper discusses the differences between two types of mobile code, Microsoft ActiveX controls and Java Applets, and the security risks of both. Finally, the paper will gives alternative suggestions on what a can be done to allow some users to use mobile code, while not putting a secure intranet at risk.