ABSTRACT
Many businesses are discovering the value of networked applications with business partners and customers. Extranets allow trading partners to exchange information electronically by extending their intranets. The security architecture necessary to allow this type of communication must provide adequate protection of corporate data and the proper separation of data among users (e.g., confidential partner information). The information security technologies must minimize the risk to the intranet while keeping the extranet configuration flexible. Corporations are acting as service providers, providing a common network and resources to be shared among the user base. The Web server is evolving into a universal conduit to corporate resources. Without adequate security controls, extranet security will become unmanageable.
