Be the first to like this
IT security wars show now sign of slowing down, or in any way, becoming less intense, quite the reverse. Rogue States, Criminal Gangs and Hackers are now trading information and sharing skills and developments on an industrial scale. Vast sums of money are being stolen and extorted by these groups, and their investment in software tools and malware is significant. As a growing cooperative they rival some of our big institutions and agencies in their abilities and knowledge, and in general completely outgun the SME sector. In their latest manifestation they hunt in packs, with individuals and individual groups assigned tasks according to their particular specialisms and skills. Insourcing, outsourcing, mobile and flexible working is the norm along with networked computing, clouds and dark nets.
In contrast the forces of good tend to more conservative and operate in isolation, evolve at a slower rate, and present a relatively static attack surface. In aggregate however, they possess the people and skills necessary to dominate the IT security spectrum, but only if they share what they know along with what they are experiencing, manpower and the key software tools and skills they have developed.
The extent to which the Good could outgun the Bad is estimated to be >> 3:1 and most likely beyond 30 >> 1, provided the Good share and begin to think and act differently. But as we edge toward the IoT (internet of Things and CoT (Clouds of Things) the Good look ever more exposed by old thinking and a less than pro-active mindset focused on remedial rather than anticipative action. Here we identify some of the key risks (present and future) and postulate workable solutions that could be engineered today including auto-immunity spanning every chip, card, shelf, rack, floor, building and all devices.