The Business Controls Caddy
Welcome to the Business Controls Caddy

WelcomeAbout MePresentationsPublicationsIn The MediaContact Me
When it comes to the implementation, management and evaluation of business controls as they apply to the IT Environment, sometimes we as administrators, developers, management, ownership and members of the board of directors might be missing the big picture. Part of the challenge is that we are constantly faced with fighting the fire drill du jour. As a result, we scarcely have time to look at the big picture, how we are doing are work, and measuring/evaluating if what we are doing meets the strategic goals and objectives of the organization. We miss the opportunity to implement compliance oriented architectures. Read more...

PermaLinkComcast To Be Punished for Blocking Lotus Notes Traffic?Comments (1)

Category : General


Regular readers of this site might remember earlier posts about Comcast blocking internet traffic to prevent file sharing, and in the process prevented users of Lotus Notes from conducting day to day business through replication. Well, the first of what could be many judgement days for Comcast, CNet reports that the Federal Communications Commission (FCC) is preparing to "punish" Comcast:

Three of the five FCC commissioners have voted in favor of an item saying Comcast violated federal policy by dialing down peer-to-peer traffic over its network, according to FCC officials cited in The Wall Street Journal.

The news isn't much of a surprise, given that FCC Chairman Kevin Martin has publicly criticized Comcast for the practice and recommended to the rest of the commissioners that they vote in favor of the decision.

"The commission has adopted a set of principles that protects consumers' access to the Internet," the Associated Press quoted Martin saying earlier this month. "We found that Comcast's actions in this instance violated our principles."

The only problem is that they have not addressed the business productivity impacts to users, which is probably more important, It is possible, however, that this action may lead some business to file suit against Comcast. Only time will tell, but it is good to see public recognition of what the company did, and that they finally stopped denying it. Then again, how could they after the Associated Press documented the practice?

Related Links

FCC set to punish Comcast on P2P blocking (opens in a new browser window)
Comcast Accused of Blocking Internet Traffic for Businesses, Individuals
So Comcast Does Not Like It When Others Play Dirty?

PermaLinkThank Your for All Your Kind Thoughts and Prayers

Category : General


As I come out of a two month self-imposed exile because of the loss of my mother and work demands, I want to thank all of you who either posted comments on this blog, or sent me messages elsewhere, for your kind words, thoughts and prayers after the loss of my mother. I am finally going to have some down time this week to reflect on this loss and what it means for me. It will not be easy or simple, but who said life is easy or simple. Just know that your outreach was more than greatly appreciated and I do not have the words to adequately thank all of you as i would like to. Just know that is has been appreciated more than you could ever know.

PermaLinkMy Mom Passed Away TonightComments (28)

Category : General


My mother died around 7:00 PM tonight, after a lifelong fight with diabetes and epilepsy. While funeral plans are still pending, there will not be many posts on here in the next few weeks as I juggle this sad and unexpected loss with customer commitments. I ask that you keep her in her prayers as she goes to a better place, and also her younger sister who the last surviving sibling of her generation. Their older brother John died a few weeks ago after a losing battle with cancer. I will be spending the next few days mourning her loss and hugging my kids harder than they can possibly stand.

PermaLinkIf Social Networking Sites Are Like Sex (Thoughts on the Anomymity=Cowardice Bandwagon)Comments (0)

Category : Blogging Risks


Social networking websites are like sex. The only sure thing is abstinance (sic), but since that's not really acceptable to a lot of people, you better have a lot of protection and education. If you post without security and without regard to what the content is, it's no different than unprotected sex -- it can lead to unintended consequences, and if you get involved in some really rough stuff, better believe you might get hurt.

Bill Smith, Ph.D.
Associate Athletic Director for Communications
University of Arkansas


It is perhaps the most disgusting example of the Web 2.0 Social Networking world to date. What it does falls under the long held American belief of free speech, yet it offends the sensibilities of anybody who has come across it to date. It is a web site by an alumnus of Duke University that probably has the University wishing that its image problems were limited to the Lacrosse team fiasco. But no,
juicycampus.com has brought a great deal of attention to the owner of the web site and the fact that he is a Duke alum. He has created a site that allows people to post anonymous campus gossip, much of it so vile and below any standards of social decency, that it is garnering international attention and condemnation. One school's student body is lashing back with an "Anonymity=Cowardice" on-campus campaign, Major advertisers on the site, including Google, are pulling their ads from the site under wilting pressure. So is it time for all of us to jump on the "Anonymity=Cowardice" bandwagon?

This is actually a tougher question than it may seem to be on its face. While many internet sites and blogs do not allow anonymous comments, we do so only knowing that the person reportedly posting is who they say they are. We allow people to post with Gmail, Yahoo! and other public mail service accounts, yet we have no mechanism to test the veracity of these people and these addresses. There are also reasons why people want to post anonymously or with a false name. I myself have posted on the IBM Lotus DeveloperWorks discussion fora with the moniker of "File Save" for years, only "coming out" after I started this blog back in July of 2004. There was a simple reason for this. I started posting on there when I worked for Lotus Professional Services (now ISSL), and we were told not to post there with our real names, lest people think we were posting an official IBM/Lotus position on a subject. Of course, times have changed and you will see many an IBMer posting on there, identifying themselves as IBMers. So it might be argued that this type of anonymity does not equate to cowardice.


Then there is the case of a website called
SportsJournlists.com. This is a web site where many a sportswriter and other journalists go to vent about their jobs and other frustrations. They do so with false screen names so that they do put their jobs at risk. At the same time, however, they attack others with so much vile and contempt that their "anonymity" does equate with cowardice. And it is ironic that these are the same people who blast blogs because of anonymous comments. But there is an unwritten code there: even if you know who the person behind the screen name is, you do not out them publicly. If they choose to out themselves, then they make that choice.

This brings us back to JuicyCampus. One of the many complaints about the site is that people are "outing" closet homosexuals, putting these people at emotional and physical risk. The ultimate irony here is that the owner of the site is a self-outed homosexual man. Yet he refuses media interviews as the web site is being investigated by state Attorneys General across the country.


There seems to be little people can do to pout this Genie back inside the bottle. Even if this site were to be shut down today, the type of content that drives it will still  be around and continue to grow. All we can do is to do our own self-policing of our web sites based on our principles and internal moral guidelines. We can also start to use practices that show our commitment to what we say we are going to do, which may not be easy. Companies such as PricewaterhouseCoopers require the use of a corporate email address that is physically validated before a registration process is completed. It might be argued that this is done for marketing purposes, but it can just as easily be argued that this is to protect against user fraud. But some people may work for companies that do not allow their company work addresses to be used for anything.


We could go further in what information we collect to validate a user s a real person. For example, It is getting harder to complete on-line registration forms for web sites using dummy information to "protect our privacy". Some sites are validating entered street address information against a United States Postal Service (USPS) database of valid mailing addresses, bouncing any registration requests that cannot be validated. Sadly, this is a false sense of validation. Unless I am registering on a site to actually conduct some sort of transaction, I can just open up a phone book and use any name and address that I find handy. And this just makes the situation worse.


The Web 2.0 world is fraught with with this type of peril and it may actually require a major paradigm shift in what people will do and not do on the Internet. One of these things, as
written in a post by Dr. Smith is:

While this is old advise -- probably a year too late for many -- but if you have not claimed your name on your campus Facebook,
here's yet another example of why that's a problem.

So let's all get together and give good social networking.


Related Link(s)


Dr. Bill Smith's 2006 COSIDA Presentation on Social Networking Sites

PermaLinkBuzz Bissinger: Blogs Are "Dedicated To Cruelty"Comments (1)

Category : Blogging Risks

This past week week has been an interesting one in the blogosphere. Arizona State University had terminated thier cheerleading program because of some pictures of their cheerleaders posted on blogs and elsewhere. As disturbing as this may be, even more disturbing was the appearance of Pulitzer Prize winning Friday Night Lights author Buzz Bissinger on a live town hall style edition of "Costas Now!" last week. Billed as a special show to discuss the current state of sports media, the subject turned to the impact of blogs on sports media. Here is what happened.





HBO has already had these videos yanked from YouTube, so enjoy these now while you can.

You can also read my take on this show over on Eye on Sports Media.







Search
Google
Sponsored Ads
My Other Blog

Fighting Fud

Fear, Uncertainty and Doubt (FUD) are too often used as marketing tools. And too many mainstream publications are citing reports that have no validity. So if you know anybody who is citing these publications and reports to make business decisions, please point them to one or more of these links. You can also point them to the "Fighting FUD" index of stories and/or add the "Fighting FUD" graphic link to your web site.



flag icon graphic Microsoft Tries To Feed Up More FUD, Again

flag icon graphic Lies, Damn Lies, and Radica...oops I Mean Statistics

flag icon graphic On Forbes, Foolishness and FUD

flag icon graphic When Technical Magazines Fuel FUD


Fighting FUD Blogroll
Tom "Duffbert" Duff
Chris Linfoot
Matt White
Joe Litton
Jeff Crossett
Gerco Wolfswinkel
Chris Whisonant
Gregg Eldred
Richard Schwatrz

Leaderboard By Category

About Me
About the Blog
Accounting Software
Admin2005
Articles
Auditing Standards
Best Practices
Best Practices - Coding
Blogging Risks
Blogging Templates
Blogsphere
Book Downloads
Book Reviews
Bookstore
Business Continuity
Business Continuity/Disa...
Business Controls
Business Process Re-Engi...
Caddyshack
Case Studies
Collaboration Tools
College Football
College Hoops
Commentary
Community News
Compliance
Compliance Tools
Compliance Tools - Lotus...
Conference Presentations
Control Frameworks
Control Self Assessment ...
Copyright, Fair Use and ...
Corporate Governance
Data Protection
Daylight Savings Time
Dimensions of Leadership
Disaster Recovery
E-Commerce
E-Mail Compliance
E-Mail Etiquette
Employee Policies
Ethics
Exposure Drafts
Eye on Sports Media
Fighting FUD
Fraud Prevention
General
Going Green
Golf
Governance Cup
Government Compliance
HIPAA
Humour/Satire
IBM Pensions
IM Controls
Internet Safety
Interviews
Ireland 2007
IS Governance
IS Governance At Home
IT Audit Tools
IT Governance
IT Governance Insight
ITIL
Just for Fun
Licensing
Lotus AdvisorLive
Lotus Notes 8
Lotus Quickr
Lotusphere 2005
Lotusphere 2006
Lotusphere 2007
Lotusphere 2008
Movie Reviews
News Links
Newspaper Columns
Niagara Basketball
None
Notes 8 Beta
Notes/Domino Administrat...
Notes/Domino Development
Notes/Domino Mail
Notes/Domino Security
Observations
Outsourcing
Patent Issues
Presentations
Press Releases
Privacy
Procurement Controls
Product Advocacy
Records Retention
Reflections
Risk Assessment
Sarbanes-Oxley
Sarbanes-Oxley Tools
Secure Messaging
Security Awareness
Security Controls
Site Update
Smoking Kills
Social Engineering
Social Software
Social Software Risks
Software Development Con...
Software Tools
Spreadsheet Controls
Telecommuting Risks
The Disposable Society
Training Series
Travel Tips/Observations
Trivia
TV/Radio Sports
Understanding COBIT
User Education
User Interface
Vocabulary
Way Off Topic
WebSphere
XBRL
XML Feeds