Mobility and cloud computing are introducing exciting new directions for consumer and business technology and services. While this can significantly increases the utility and appeal of technology, it also dramatically raises the security risk as sensitive and personal data is shared across a network. Purpose built hardware can help deal with increasing network speeds and more complex threats. This is where semiconductor technology plays a fundamental role. Chip providers are developing business cases for implementing secure features on their products, and these are paving the way for new services for consumers and businesses. Gartner customers can view this latest webcast by registering here.
If you are a Gartner customer and you are considering the different ways to deploy your security product or technology as a service you should read our latest research note by clicking here.
Tags: different, market, product, Security, security product, service, technologyApparently the FBI has a challenge for the cracking community here. Lets see who can be the first to crack this code. If you crack it, please submit a comment on this posting with the results 
See the links below.
MSNBC Story:
http://www.msnbc.msn.com/id/42348642/ns/technology_and_science-security/
FBI Website:
http://www.fbi.gov/news/stories/2011/march/cryptanalysis_032911
Tags: analysis, com, Security, site, technologyGartner customers can read my latest paper titled “Emerging Technology Analysis: Content-Aware Data Loss Prevention” by clicking here
Tags: analysis, content, data, technology, titleMany security professionals have the need to perform analysis when Malware, Trojans or strange behavior is reported on a system. Lets take a look at the Sysinternals autorun.exe for performing this analysis. The goal of this blog posting is to try demonstrate the benefits of the application. Today, I’ll install Sysinternals onto my system in order to properly execute my startup analysis.
Tags: able, analysis, application, behavior, capability, com, context, day, different, ensure, internal, Internet, investigation, just, malware, option, process, review, ROC, run, Security, site, software, sysinternals, technology, time, today, tools, use
As many of us already know corporations and banks have changed the way they provide printed information to 
customers (at least for the most part). Corporations over the last 10 years have increasingly adopted policies against using social security numbers and personally identifiable information (PII) in their mailed reports, bills or customer invoices. This was primarily chartered by privacy advocates to reduce the exposure of customer data and prevent it from being used as a data source for identity theft. The increase of dumpster diving and drive by mailbox raids made it clear that we had to do something about what we disclose. Our governments don’t always seem to adopt the same protections that we’d expect of our public and private corporations so I’m hopeful my article will entice the citizenry to contact their government agencies and demand some changes.
Vulnerability Management - Source (ISACA.org)
While there are different stories about what cloud computing “is”, there is one specific direction that virtualization is headed that could bring along with it some additional problems for the security industry. One issue I wanted to focus in on is centered around vulnerability management and how it is implemented in a cloud environment. Many customer’s are faced with the need to scan their cloud, but unable to do so.
Virtualization providers have been pushing their customers and hosting providers to adopt new infrastructure to automate the distribution of CPU processing time for their applications across multiple condensed hardware devices. This concept was originally conceived as “Grid-Computing” which was created to address the limits of processing power in single CPU systems. This new wave of virtualization technology is meant to automatically distribute processing time to maximize the utilization of hardware for reduced Cap Ex (Capital Expenditures) and ongoing support costs. VMware’s Cloud Director is a good example of the direction that virtualization is going and how the definition of “cloud computing” is changing. Virtualized systems are quickly being condensed into combined multi-CPU appliances that integrate the network, application and storage systems together for more harmonious and efficient IT operations.
The vulnerability management problem:
While cloud management is definitely becoming much more robust, one issue that is apparent for cloud providers is the management of the vulnerabilities inside a particular customer’s cloud. In a distributed environment, if the allocation of systems changes by either adding or removing virtual systems/instances from your cloud you quickly face the fact that you may not be scanning the correct system for it’s vulnerabilities. This is especially important in environments that are “shared” across different customers. Since most Vulnerability Management products use CIDR blocks or CMDB databases for defining the profile for scanning, you could easily end up scanning an adjacent customer’s system and hitting their environment with scans due to either a lag between CMDB updates or due to static definitions of scan network address space.
The vulnerability management cloud solution:
My belief is that this vulnerability management problem will be addressed by the integration and sharing of asset information between the cloud and vulnerability scanning services. Cloud providers will more than likely need to provide application programming interfaces which will allow the scan engines/management consoles to read-in current asset or deployment information from the cloud and then dynamically update the IP address information before scans commence.
Furthermore, I feel that applications such as web, ftp and databases will be increasingly distributed across these same virtualized environments and automatically integrate with load distribution systems (load balancers) to ensure delivery of the application no matter where the applications move inside the cloud. The first signs of this trend are already apparent in the VN-Link functionality release as part of the Unified Computing System from Cisco however adoption has been slow due to legacy and capital deployment on account of the world’s market recession. This may even lead to having multiple customer applications being processed or running on the same virtual host with different TCP/UDP port numbers.
This information would also need to roll down to the reporting and ticketing functionality of the vulnerability management suite so that reports and tickets are dynamically generated using the most up-to-date information and no adjacent customer data leaks into the report or your ticketing system for managing remediation efforts. Please let me know your thoughts….
Tags: able, alignright, application, applications, belief, CIDR, cloud, CMDB, com, computing, console, data, device, different, direction, end, ensure, important, industry, infrastructure, management, market, option, problem, process, processing, product, program, recession, ROC, run, scanning, Security, special, systems, TCP, technology, time, Trend, use, vulnerabilities, vulnerability, vulnerability management, width
