Data Defenders Should Share Resources, Says Symantec Expert

Companies concerned about data security must cease operating as "islands" and share resources to ward off the rising threat of cyber criminals. That's the message that Stephen Trilling, senior vice president of Security Intelligence and Technology at Symantec Corp., had for attendees at last week's RSA Conference.

Addressing some of the 25,000 people at the Moscone Center in San Francisco -- record attendance for the annual security event -- Trilling said the future of data security will see every failed log-in, malware download and infiltration shared in a database to help companies and their experts identify common threats.

"What we need is a system with a worldview," he said.

Matching Persistence

In the address, The Future of Security, which was recorded last Wednesday and posted on the RSA Web site, Trilling noted that the fight against hackers is an "asymmetric" battle because the bad guys are able to methodically purchase the same security products used by their intended victims and search for weaknesses.

"Today's targeted attackers have the persistence and patience to execute plans over months and years and they are capable of changing their campaigns as needed to meet their targets," Trilling said. "What about defenders?"

The problem for companies, which often deal with threats inside their systems rather than keeping them out in the first place, is that they mostly do not interact with each other, and often their own system administrators do not have time to keep up with the latest information about threats.

A security product may detect a failed login, but will have no idea that the same computer just connected to a suspicious Web site 10 minutes earlier. While companies may want to help each other, there is currently "no easy way to leverage that."

"Managing security and keeping up with the latest changes in the threat landscape is expensive," Trilling said,...

Comments are closed.