Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Friday, February 17, 2006

Hot Topics in Tech Security

Executives at the RSA Security Conference here say the answer depends on who’s doing the talking.  SSL-VPN, new generation firewall, authentication, on-demand securuity in applications and security move into every aspect of IT.

Richard Palmer of Cisco Systems’s security technology group said SSL-based VPNs are very hot.  In the firewall space, he’s detecting deeper interest in inspection technologies The growth is spread out across many product areas and focused on innovating in these areas,” he said during a panel discussion during the RSA Security conference here. 
Mike Nash, corporate vice president of the Microsoft security technology unit, said customers are responding positively to Microsoft’s progress in making Windows more secure.  “The interest now is in more aspirational scenarios that require a higher level of trust, such as authentication and authorization,” he said.  Nash said they include delivering security improvements in both the next version of Windows Vista and its Longhorn server suites.  At the same time, we’re making sure we improve core platform capabilities, such as isolation, anti-malware technology and better network isolation, he added.  “We’re doing a lot of work around making sure Kerberos (define) is a native and pervasive part of the Windows platform, and especially in depending on multi-factor authentication.”

Looking ahead at next year, Thomas Noonan, chairman and CEO of Internet Security Systems (ISS), said the next-generation approach to security is seeping into vendors’ wares.  I don’t mean patches that provide new [security] signatures, but on-demand services that bring the security infrastructure to life in extensible ways that had not been capable before.”

Another big trend we’re seeing, said Cisco’s Palmer, is that security is no longer thought of in isolation terms.  “We’re seeing customers trying to balance the equation between and among risk, convenience and cost: convenience in helping end-users get to an application, but also administer the app.

ISS’s Noonan added: “I personally believe that on-demand services or online services are going to play a huge role in [security] because they’re flexible, they’re extensible and the networks are reachable.”

Posted on 02/17