At InfoSec World 2018, the vast majority of roundtable discussions were about people and process, with little mention of technology. My talk was about the impact of scale on security. There were several notable conclusions that can be drawn from the conversation. I was a guide or moderator, and the conversation went to places that …
TVP Category Archives
InfoSec World 2018: Scale-Up, Scale-Out Security
At InfoSec World 2018, March 19–21, I will be speaking on scale and security. I’ve talked about scale in the past, and about the different types available. Join me at my roundtable discussion at InfoSec World, “G4 Impact of Scale on Security: An Open Discussion.” Bring your questions and an open mind, and be ready …
Continue reading “InfoSec World 2018: Scale-Up, Scale-Out Security”
The Gray Market
In the last Virtualization and Cloud Security Podcast, Michael White, a Veeam field product manager, and I discussed the gray market for security attacks. These days, performing an attack against an individual or company is trivially easy. What we used to call script kiddies have become a major business unto itself, sometimes protected by the …
The Cache Side Channel Nightmare
There is currently quite a bit of talk about cache side channel attacks within Intel and other processors. Attacks of this type read data out of the cache, force data into the cache, or force unbounded actions to take place. These actions lead to data leakage: leakage that is not easy to detect and has …
Security at Scale: User Behavioral Analytics
Recently I was invited to participate as a delegate at Tech Field Day 16 in Austin, Texas, where we visited with Forcepoint. Forcepoint is a company with a combined portfolio that includes user and entity behavioral analytics (UEBA). UEBA’s primary focus is determining what is normal for a user and then deciding if a given …
Continue reading “Security at Scale: User Behavioral Analytics”
“I Want to Get Out of the Data Center Business”
CIOs everywhere are stating that they want to get out of the data center business and move to the cloud. Is this just a temporary, trendy shift or a long-term solution? Cloud providers such as Microsoft, Amazon Web Services, Google, and Oracle are maturing their offerings and marketing their services as the optimal solution. While …
Continue reading ““I Want to Get Out of the Data Center Business””