Re: Three Physical Tiers in the Name of Security?

[Christopher Canova <ccanova () reachone com>]

Multiple layers of security aren't effective if the extra work is 
preventing proper administration. Your company must weigh the intangible 
consequences of increasing staff workloads. If the workload is 
temporarily spiked due to the switchover, it will work itself out when 
the process is completed. However, if the workload seems to increase 
permanently, then its possible security could actually be comprimised as 
a result of the lower administrative response times.

Some security "axioms":

Administration is proportional to Security.
Usability is inversely proportional to Security.

In other words, increasing security will decrease usability and increase 
administration. Who decides? Usually executive management.

In your case, i would wiegh the extra workload and determine all the 
costs associated with the switchover, then provide your details to the 
colleague. Your colleague should be able to demonstrate an immediate 
need for the additional measures. However, security for security's sake 
should probably not take precedence over the everyday work your company 
does.

--
Christopher Canova
ReachONE Internet Support
http://reachone.com

Take back the Web, get Mozilla Firefox:
- http://www.spreadfirefox.com/?q=user/register&r=116068

Reclaim your Inbox, get Mozilla Thunderbird
- http://www.spreadfirefox.com/?q=affiliates&id=116068&t=179