Normally you should make it a part of your security policy which all staff are signed upto and expected to follow. You put things like "activity on the company's network and computer systems is subject to monitoring". You don't want to put things like "where miscievous activity is suspected" because then you might find you need to prove your case before being allowed to monitor or use the evidence you have gathered. By making clear that you have the right no matter what you circumvent any such issues. New staff should sign up to the security policy as part of their contract / staff handbook. Depending on the employment law in the relevant country you will either need to invoke a change of terms and conditions of employment or you will need to go to the effort of a contract change or get them to sign something (talk to your HR department about that one). Regards, David Pybus Security Engineer - COLT Internet -----Original Message----- From: Bill Benner [mailto:bill.bennerat_private] Sent: 12 July 2001 22:36 To: forensicsat_private Subject: Keybord Entry Capture Programs My question is twofold: 1.) What are the legal ramifications (real or potential) of a keyboard entry capture program installation on corporate desktops? Do civil issues exist? Must one have clear evidence of wrong-doing before silent installation? Precedence? How well does this type of 'evidence' present itself in the courts? How to 'prepare' outcome for Chain of Evidence compliance? 2.) Which of these products are considered the standard? Specific to various MS desktops at this juncture. Thanks in advance for any information. Bill Benner ----------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com ********************************************************************** COLT Telecommunications Registered in England No. 2452736 Registered Office: Bishopsgate Court, 4 Norton Folgate, London E1 6DQ Tel. 020 7390 3900 This message is subject to and does not create or vary any contractual relationship between COLT Telecommunications, its subsidiaries or affiliates ("COLT") and you. Internet communications are not secure and therefore COLT does not accept legal responsibility for the contents of this message. Any view or opinions expressed are those of the author. The message is intended for the addressee only and its contents and any attached files are strictly confidential. If you have received it in error, please telephone the number above. Thank you. ********************************************************************** ----------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
This archive was generated by hypermail 2b30 : Fri Jul 13 2001 - 17:08:36 PDT