February 10, 2008   Sign In |  About ebizQ |  Contact Us |  Join ebizQ Gold Club
Peter Schooff
Peter Twenty-Four Seven Security
 Peter Schooff's blog is a daily look at what's going on in the world of computer security with an emphasis on how it affects businesses.

« Government Leads in Data Breaches | Main | Rather Ridiculous Data Theft Story »

January 08, 2008
2008 Security: More of the Same...Much More

Found an interesting article on CNet by Jon Oltsik looking forward to security in 2008. A quick summery of his list is below with my comments (also, the last one is mine):

Comprehensive Desktop Security: PCs used to only have to worry about antivirus (the good old days), but you can now add Network Access Control (NAC) and data protection to that list.

Public Key Encryption: This is becoming a popular way to transmit info on the internet, and while government will probably drive the Public Key Infrastructure, expect PKI-ready applications and PKI-enabled Windows.

Federated Identity: While federated identity had pretty much overpromised and underdelivered already, it was drawing heavy buzz at this years IAM show, and expect it to realize much of its promise this year.

Encryption: Still somewhat resource-intensive to deploy, new storage devices should change that this year, and with so many laptops gone missing last year, the only reason that hits the news is when that laptop is carrying unencrypted data.

SaaS Security: Too complex, too many patches, and not enough skilled people, all the more reason to give the job to someone else (but if they're called WiseGuy Security, you might want to go with someone else).

Security Product Consolidation: While IBM has been making noise about their end-to-end security product, the other biggies have been quickly acquiring companies to fill out their end-to-end security portfolios.

Information Governance: Expect standard data models, meta data tagging, and information classification to help companies standardize their data security so they now where it is, what it is, and who has access.

Better PCI DSS Enforcement: The payment card industry data security standard rules are written, but many companies are still far from compliant. Previously, the PCI DSS folks have kept pushing back the deadlines, but in order to prevent us from going back to the barter method (how much can 200 digital words get you at the ole cigar shoppe?), expect stronger enforcement and more stringent penalties.

Log Management Architecture: The who and what of data access is key to data security, and log management plays a big part of that. But acquiring log data and managing it are two different things, which is where log management comes in.

Application Security: Applications can no longer be tossed out to the wolves of the Internet without comprehensive security testing (the stakes are just too high).

Posted by pschooff in |Digg This|Add to del.icio.us

Trackback Pings

TrackBack URL for this entry:
http://www.ebizq.net/mt/mt-tb.cgi/3021

Comments Post a comment




Remember Me?

(you may use HTML tags for style)

We ask that you type your code (displayed below) in the text box.This code is an image that cannot be read by a machine. It prevents automated programs from submitting comments.


Code:



Most Recent ebizQ Blog Entries
ADVERTISEMENT
Subscribe
News Feed
Recent Posts
Categories
Archives
Blog Roll
Blogosphere
This Work
Accountability:The opinions expressed in this blog are solely representative of the blog's author, and not of ebizQ
Subscribe to our Newsletters
ebizQ Weekly Gold Club Update
Live Webinar Updates
Updates from ebizQ Partners
ebizQ SOA Update
ebizQ BPM Update
ebizQ Security Update
ebizQ BI Update
ebizQ Open Source Software Update
Virtual Show Newsletter
Your E-mail Address:
BAM: The Killer App for CEP
Date: Feb 12, 2008
Time: 12:00 PM ET
(17:00 GMT)
I WANT TO ATTEND
Event Processing Market Pulse
Date: Feb 14, 2008
Time: 12:00 PM ET
(17:00 GMT)
I WANT TO ATTEND
Archived Webinars | Upcoming Webinars

Marketing Solutions | Feedback | About ebizQ | Unsubscribe | Privacy Policy | Site Map