For the last several years there has been an increased focus on network security, not only from the professionals who run the network, but also from business leaders, industry groups and government bodies. While most of this added focus has come under the banner of "customer data protection," the implementation of added controls often misses the mark because the network owners tend to fall back on the traditional strategy of "protecting the network" rather than "protecting the stuff on the network," which is really the desired outcome of the increased focus on security.