Today is the final day of the vendor expo, and so I thought I’d provide a few comments on the products and services the vendors are offering to address the challenges outlined in the conference sessions over the course of the week.
Trusted Computing Group, an industry organization formed to develop, define, and promote open standards for hardware-enabled trusted computing and security technologies, has created specifications to enable more secure computing across the enterprise in PCs, servers, networking gear, applications and other software, hard drives and embedded devices. The TCG booth included a working demonstration of the their open source NAC solution, with multiple vendors publishing to and receiving updates from the IF-MAP server.
Lumeta, my company, empowers large enterprise and government agencies with global network visibility, allowing them to understand how network change affects security, availability, and compliance. Lumeta IPsonar discovers and maps every network asset, enabling IT professionals to analyze the connectivity between assets and networks, uncover risk patterns, and automatically enforce network policies. Earlier this week, we announced a new cybersecurity audit service for control systems at electric generation facilities, water plants, chemical factories and other heavy industrial infrastructure. The Lumeta Control System Cybersecurity Audit (CSCA) will help clients secure the control system network by employing IPsonar®, to close information gaps that have led to unmanaged vulnerabilities and greatly cybersecurity situational awareness in control system networks.
We live in a net-centric world where new information technologies arrive at lightning speed, allowing us to share information across town or around the world faster than ever before. The National Security Agency’s, Information Assurance mission is dedicated to providing information assurance solutions that will keep our information systems secure. At RSA, the NSA was showing a new secure phone/PDA running Windows CE, which allowed identity management-based access to the SIPRNet.
ArcSight provides a compliance and security management solution that enables enterprises and government agencies to comply with policy, safeguard assets and processes, and control risk. Businesses rely on ArcSight to rapidly identify, prioritize, and respond to compliance violations, policy breaches, cyber-security attacks, and insider threats. AT RSA, Arcsight announced its new ArcSight Express family of compliance products targeted at the needs of mid-size organizations with limited resources.
Wave Systems provides software to solve critical enterprise PC security challenges such as strong authentication, data protection, network access control and the management of these enterprise functions. Wave’s EMBASSY® software manages the security functions of TCG’s industry standard hardware security chip, the Trusted Platform Module (TPM).
Microsoft is the worldwide leader in software, services and solutions that help people and businesses realize their full potential. Working with partners and the industry to build trust in computing, Microsoft is committed to delivering technology fundamentals and innovation, prescriptive guidance and industry partnership that together will help better protect our customers. During the past year, Microsoft has advanced End to End Trust in four critical areas: security and privacy fundamentals; creation of a trusted stack with security rooted in hardware; in-person proofing based on identify claims; and social, political, economic and IT industry alignment for change.
Buzzword Bingo
Finally, over the past week I have a few too many buzzwords for my taste. And frankly, there were a few that dominated several conversations. None of these are particularly useful terms in my view and I could certainly do with out hearing them, ever again.
“Data-in-Flight” – I don’t even know what this one means.
“DLP” – We all understand the need for data loss prevention. But it seemed like every product from telephone to toilet paper is claiming DLP support.
“Service in the Cloud” – Sounds really cool and cutting-edge. But from what I have seen so far, this is really nothing more than a traditional managed security service with a new (and un-needed) wrapper.