« Forrester's 2010 security predictions | Main | Case Study: "SOX too ambiguous" Complains Large Equity Firm »
Should we be giving up on traditional Security?
By Sudha Iyer
Its war! The Iranians attacked the Chinese. The Chinese attacked Iran… and Google… and Adobe (and 30 others). The governments of France and Germany warned their citizens against using Internet Explorer in response.
Is our security so poor that we’re just throwing good money after bad? Should we just adopt the Facebook model and assume that everything we do is now public knowledge?
It’s all too easy for IT staff to get lost in the noise about secure configurations, patch Tuesdays and checklists, and to rarely give the time to building a “defense in depth”.
Key to providing a more complete security solution are Intelligence, Vigilance and Surveillance. Together, they build a framework that defines normal and abnormal behavior. For example, if a company usually sees 1000 transactions a day by monitoring activity, when the system peaks at 3000 transactions, we can detect an anomaly. And by applying intelligence, such as knowing it’s the last week of the quarter, we can understand that 3000 is a non-threatening happenstance.
Monitoring application activity for changes in behavioral patterns and proactively acting upon them is vital to providing depth of security. Lets remember here, that whilst the headlines are all fun and games, you’re defending against top-of-line criminals: not people who want to delete your hard drive or put cute messages on your website, but people who want to steal all your data for profit. As both NASA and the US Army were reminded recently, information is stored in databases, and databases have huge exploitable holes. Deploying LogLogic Database Security Manager (DSM) provides the kind of zero-day control required to respond to data leakage attacks. DSM is a Data Leak Prevention service that protects structured data in your databases, and provides the necessary compensating controls to reduce your risk of exposure.
Relying on security patches or rotating firewall ports is not a comprehensive security solution. DSM is a must-have tool in your risk management strategy, ensuring that the crown jewels of your enterprise are not sneaking out, undetected, over the wire.
Posted January 19, 2010 in Risk Management | Permalink
January 2010
| Sun | Mon | Tue | Wed | Thu | Fri | Sat |
|---|---|---|---|---|---|---|
| 1 | 2 | |||||
| 3 | 4 | 5 | 6 | 7 | 8 | 9 |
| 10 | 11 | 12 | 13 | 14 | 15 | 16 |
| 17 | 18 | 19 | 20 | 21 | 22 | 23 |
| 24 | 25 | 26 | 27 | 28 | 29 | 30 |
| 31 |
Categories
Archives
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
- May 2006
- April 2006
- March 2006
- February 2006
- January 2006
- December 2005
- November 2005
- October 2005
- September 2005