As WFH continues to gather steam, resilience of the enterprise network infrastructure becomes increasingly paramount as well. Managing load on the network will become an increasing challenge for CTOs. As they rapidly roll out enterprise VPNs and remote desktop solutions to give employees access to sensitive resources and internal applications, CTOs must find ways to balance the volume on the network. Plus, they need to keep it secure.
On secure communications, companies now rely on VPN technology for secure remote access. VPN services are either locally hosted by the companies or paid for as a service. However, it is not the silver bullet that solves all network security issues. Firstly, a badly configured VPN will leave you as exposed to attacks as one with no VPN. Secondly, if service availability is not carefully considered in VPN installation, you could have a serious vulnerability of a “single point of failure”.
Vulnerability to service disruptions in WFH could practically ground the entire organizations’ activities. In a scenario where all users are dependent on some server(s) to access official tools & resources while working remotely, then anything going wrong to that server(s) (e.g. DOS) means everyone loses access and work grinds to a halt. The popular D/DOS attacks create large volumes of ‘garbage’ traffic to saturate the network, but there are others such as attacking the intricacies of the VPN protocol. A flow as little as 1Mbps can knock a VPN service offline. Sadly, in D/DOS circumstances (whatever the type), reverting to paper-based activities as a backup is not practicable due to geographical separation between WFH workers. Thus, in a WFH world, the impact of availability-linked attacks is significantly higher.
Companies must re-evaluate their threat scenarios considering these new possibilities and respond appropriately with the right tools and enterprise infrastructure to mitigate this threat. Consider efficient bandwidth management, load balancing, cloud infrastructure, and prioritizing the use of trusted-vendor applications that are tested and certified to a certain degree of assurance.