Infosecurity Opinions
Mutually Assured Cyber Destruction
Jarno Limnell says without the unveiling of evidence that’s nearly impossible to collect, nation-states should take a look in the mirror before they blame China as the world’s worst transgressor of cyber-espionage
Comment: Myths and Misconceptions on Securing Open-source Software
Agile security expert Ryan Berg addresses the common myths and misconceptions of securing open-source software and offers practical tips on how to build in security throughout the software development lifecycle – from design, development and deployment through to production
Comment: There’s No Such Thing as Cyber War
Chester Wisniewski of Sophos wages battle on the term ‘cyber war’
Comment: Secure Everything, Everywhere
Andrew Walker-Brown of Dell SonicWALL discusses the need for all-encompassing security to ensure performance and productivity
Comment: Mutual Authentication and Customer Education Can Prevent Fraud
Pat Carroll of ValidSoft uses recent examples of fraud to illustrate the need for mutual authentication and better customer education
Comment: Securely Embracing ‘Shadow-IT’ – the Apps an IT Department Can’t Control
Simplexo’s Simon Bain examines how IT departments can deal with the security issues related to ‘Shadow-IT’ and cloud storage
Comment: A Cultural Spat? Data Protection and Privacy Issues between the EU and US
As the EU Commission edges closer to adopting revisions to its Data Protection Directive, US companies will be looking more closely at their IT practices in consumer data retention says Andy Green of Varonis.
Comment: Beware a Quiet Queen’s Speech
Consultant William Wallace finds that what wasn’t said in the recent speech to open the new session of parliament may be as interesting as what was.
Comment: Cybersecurity and Reality – What’s in a Word?
What does the word 'cyber' really mean? Gregor Campbell cracks open his dictionary to trace its transformation
Comment: Rethinking Safety in the Modern Digital World
Eric D Knapp of Wurldtech contemplates what safety means in today’s digital environment
Comment: Exposing the Myths of Access Rights Management
Managing access rights is time-consuming and often considered a mundane task. Nevertheless, making sure only the right people can access company data is a business-critical function. Christian Zander of protected-networks.com addresses a number of ‘myths’ he has encountered when discussing this issue with senior IT management across Europe.
An Argument Against the Licensing of Information Security Professionals
A licensing scheme for information security professionals would create more issues than it solves, according to Hord Tipton
An Argument in Favor of Licensing Information Security Professionals
Allan Boardman says it’s time to license information security professionals and join the ranks of other esteemed professions
Comment: Authentication – The Text Factor
Lars Nielsen of SMS PASSCODE explains why multi-factor authentication is moving from traditional, token-based preset codes to real-time connected and mobile systems, and the provisioning and security benefits it offers
In Cyberspace, No One Can Hear You Scream
Royal Holloway’s Geraint Price and Keith Martin call for innovative approaches to securing cyberspace that go beyond the current practitioners’ toolkit
Comment: Making the Journey from BYOD to BYOPC
Is the laptop evolving into a tablet, or is the tablet evolving into a PC? As the device landscape blurs, Yorgen Edholm of Accellion urges enterprises to face the new challenges of how content is secured, synchronized and shared on the new generation of mobile devices
Comment: Which CISO Will Lead your Organization to Success?
Choosing the right talent for one of the most challenging jobs in the cyber economy can be a tough job, but what kind of CISO should you be looking to recruit to lead your organization? Amar Singh provides his model CISO for your consideration
Comment: How to Fight Back against Cybercriminals
Jason Hart of SafeNet discusses the ‘secure breach’ concept based on a data-centric security approach, and how this philosophy can be implemented to protect data in the face of hacker exploits
An Overview of E-Mail Protection Systems
Alexander Zatsepin of Protection Technology Research provides a guide to email security technologies and discusses the features you should look for to suit your organization's needs
Comment: Internal Restructuring Can Expose Security Risks
Marc Lee of Courion explores the hidden risks that organizations face when making internal changes and significant job cuts, highlighting the importance of access risk management to prevent them