July 01, 2006 | SC Media

Print Issue: July 01, 2006

Cover Story: Working for Gold

For all of the change that occurs in the industry, there remains one immutable consideration that every IT security manager must deal with: the justification of security costs.

Industry evolution

There is no denying the IT security market is alive and well. Depending on who you ask, between 400 and 1,500 security companies are in business worldwide, offering solutions ranging from anti-virus software to network access control appliances to consulting services. This, of course, should come as no surprise — especially when one considers enterprises are spending more money than ever before to meet compliance requirements and to defend against sophisticated and targeted attacks that could lead to embarrassing, costly breaches.

Traffic control

How do you spell trust? Not I-P-S — at least, not if you’re an enterprise security manager deploying an intrusion prevention system (IPS) for the first time. Once heralded as the “smarter” cousin of the intrusion detection system (IDS) — destined to eventually kick its kin out of the data center because of its “intelligent” ability to block, not just identify, security threats — the IPS instead has reached a sort of détente with the IDS. Rather than supplanting the IDS with an IPS, many enterprises use the two devices in complementary fashion.

The money trail

To the law-abiding internet user, online payment systems offer immediacy, convenience, safety and a global reach, while keeping transaction costs to a minimum. To the cybercriminal, such services offer the same benefits — plus something even more attractive: secrecy.

Fun in the sun

Nearly 50 security practitioners met in May in Hilton Head Island, S.C. for another successful SC Forum event — the first of two forums this year.

Preventing multiple PII disorder

By

I used to think I was the one and only Illena Armstrong. The sobering truth, though, is that there are likely quite a few more of me around nowadays — or, at least, there very well could be soon enough.

News briefs

A laptop that had stored on it the personal information of more than 26.5 million veterans was reportedly stolen in May from the home of an employee of the U.S. Department of Veterans Affairs. The event was not made public until nearly three weeks later.
The massive data breach resulted in a shakeup at the department, including the resignation of a deputy assistant secretary and a class action lawsuit.
The stolen data may also have included information on 1.1 million active-duty service members, 430,000 National Guardsmen and 645,000 members of the Reserves.

New cybersecurity standards

The 9/11 attacks may have left the nation’s power grid unaffected in 2001, but the August 2003 blackout knocked out power to some 400 million Americans. Combined, these incidents stressed the possible impact a widespread outage could cause and prompted concerns about cybersecurity.

Company news

VASCO, a leading authentication provider for the financial sector, has acquired Logico Smart Card Solutions for approximately $1.5 million in cash. The purchase of the Vienna-based Logico, an authentication storage specialist, allows VASCO to expand its presence in the smart card and public key infrastructure markets. Logico has customers in the healthcare, manufacturing and government sectors.

Next post in News