New attack vectors will grow precipitously
Look for a big increase in the number of attacks via instant-messaging clients, Internet Protocol telephony, cell phones, Bluetooth and XML.
Rootkits become familiar to the masses
Rootkits become familiar to the masses A rootkit is an extremely clandestine type of malware that hides itself within operating system kernels or application binaries.
Secure development processes become mandatory
Users are simply fed up with sloppy vulnerability-ridden code and weak security support from most independent software vendors. Look for large organisations to clamp down by placing contractual demands on software providers mandating that they implement security processes and metrics or take a hike. Microsoft is ahead of the pack in this area, while “unbreakable” Oracle lags way behind and could lose major contracts as a result.
Security management moves to network operations
At an enterprise level, network security depends on spotting anomalous activities and capturing security events.
Key management becomes a major new requirement
Database, networking, storage and firewall vendors either have or will add encryption to their solutions in 2006.
More security outsourcing It’s hard enough to administer a firewall and intrusion detection systems, to also deal with abundant security solutions for e-mail, IP telephony, Web services, wireless devices, and so on.
Month: February 2006
‘Security in the cloud’ is not the way to go
It is for this reason that a choice between implementing network security in the middle of the network — in the cloud — or at the endpoints is a false dichotomy. An organization had no choice but to put its firewalls, IDSs and anti-virus software inside its own network. Security would be vastly improved if the major carriers implemented cloud-based solutions, but they’re no substitute for traditional firewalls, IDSs and IPSs.
http://www.computerworld.com.au/index.php/id;1786107200;fp;16;fpid;0
Enterprises use freeware to beat cyber-spies
The AISSM report also revealed that Australian enterprises are under attack from both internal and external threats. According to the report, 57 percent of respondents said they found spyware installed on multiple computers; 22 percent revealed that they have discovered at least one illegitimately installed keylogger on their system, which Turner describes as ‘mindblowing’.
http://www.zdnet.com.au/news/security/soa/Enterprises_use_freeware_to_beat_cyber_spies/0,2000061744,39237993,00.htm
Microsoft, RSA, Sun And Encryption
Active Directory is one of the most widely used technologies by Microsoft customers.
RSA Security then stepped up to advance the authentication ball with a bunch of partners that will build in its encryption software to more hardware devices, including USB, wireless and Flash memory cards.
And Sun announced its plans to integrate its Elliptic Curve Cryptography (ECC) in its Java System Web Server 7.0, which is a big chunk of its Java Enterprise system.
In the past few years, smart cards have not taken off in the mainstream business world, but with three major technology players making moves to advance encryption into more devices, that’s changing.
Released to a new beta in late January, IE7 now includes support for an InfoCard for users to add authentication and encryption to Web-based transactions. The roadmap includes expanded capabilities that customers will see in future versions of Windows Server, he said, which is still code-named “Longhorn.”
http://www.internetnews.com/dev-news/article.php/3585216
Gates: End to passwords in sight
“We’re laying the foundation for what we need,” Gates said in a speech at the RSA Conference 2006 here. Even with the advancements, Gates said he wasn’t naive enough to think the password would go away overnight. “I don’t pretend that we are going to move away from passwords overnight, but over three or four years, for corporate systems, this change can and should happen,” he said.
Replacing passwords is part of Microsoft’s endeavor to simplify security, which Gates said is dearly needed. “We have an overly complex system today,” he said. Vista and Microsoft’s upcoming security products, such as Windows OneCare Live and Microsoft Client Protection, will make life easier for consumers, he said.
Microsoft has described InfoCard as a technology that gives users a single place to manage various authentication and payment information, in the same way a wallet holds multiple credit cards. InfoCard is Microsoft’s second try at an authentication technology after its largely failed Passport single sign-on service, unveiled in 1999. InfoCard attempts to address the complaint many critics had with Passport, which was that people’s information was managed by Microsoft instead of by the users themselves and the businesses with which they dealt. Although Microsoft has talked about InfoCard, and early versions of the InfoCard code were released to developers last year, Gates’ speech marked one of the first times Microsoft has demonstrated publicly just how it might work.
In a presentation, Microsoft showed how a consumer could use a self-generated InfoCard to log in to a car rental site and then use a separate InfoCard from a membership group to get a discount on the rental.
Internet Explorer 7 will support InfoCard, Gates announced. The technology will also be available for Windows XP, Microsoft said. InfoCard is one of several technologies Microsoft is developing for Vista, but the company is also making it available for XP.
Microsoft acknowledged that replacing passwords is something that needs to be done at the system level, but Gates said the company is also working on technologies to enable various identity systems used on the Internet to work together, something it calls the Identity Metasystem. In order to provide people with better identity verification as they do business online, Microsoft is asking for a stronger type of digital certificate, a so-called high-assurance certificate. Digital certificates are already widely used today in Web browsers to show that traffic on a Web site is encrypted and that a third party has identified the site and has vouched for its validity. But in recent years, standards of verification have slipped, undermining the sense of security implied by the padlock. That’s why Microsoft and others have called for a new type of certificate.
Microsoft on Tuesday announced the first beta of Microsoft Certificate Lifecycle Manager, a tool meant to streamline provisioning, configuration and management of digital certificates and smart cards, the company said.
Gates also touted several of the other security capabilities that will be part of Windows Vista. In a demonstration, Microsoft showed its anti-spyware technology, as well as a new mode that runs Internet Explorer in its own “sandbox” so Internet code can’t cross over into the rest of a PC.
As expected, the company on Tuesday released a second beta version of Windows AntiSpyware, now called Windows Defender. The first test version of the spyware-fighting tool has been popular, with more than 25 million downloads from Microsoft’s Web site. Windows AntiSpyware has been available in a beta version since January of last year. The program is designed to protect PCs against spyware, which is software installed on a system that’s designed to watch the computer user’s activity without his or her knowledge. Windows Defender already exists by that name in the latest preview release of Vista. Microsoft plans to ship Windows Defender as part of the operating system, it has said. At last year’s RSA Conference, Gates announced that Microsoft would deliver anti-spyware at no cost.
IE 7 also was announced at last year’s RSA event. It includes many security and privacy protection capabilities, such as mechanisms designed to combat phishing attacks, spyware and other threats. Cyberattackers have exploited security flaws and weaknesses in the current version of Microsoft’s Web browser in many attacks. A public preview of IE 7 was released in late January.
http://news.zdnet.com/2100-1009_22-6039177.html
Cisco readies security enhancements
Both of these enhancements can also be combined into a Cisco security management suite.
http://www.zdnet.com.au/news/security/soa/Cisco_readies_security_enhancements/0,2000061744,39237994,00.htm