Subscribe by Email

Your email:

Most Popular

Browse By Date

Browse By tag

Security as a Strategy (SaaS)

Current Articles | RSS Feed RSS Feed

What About the Authorized User?

Posted on Wed, Jan 28, 2009 @ 11:28 AM
Share on Twitter Twitter | Share on Facebook Facebook | Submit to Digg digg it |  Add to delicious  delicious |  Submit to StumbleUpon StumbleUpon |  Share on LinkedIn LinkedIn | Submit to Reddit reddit 

There are plenty of security products on the market--from firewalls to IDS/IPS to NAC, etc.--that are designed to identify and alert suspicious events. Network traffic is being analyzed deeper and deeper in order to identify this type of traffic (a fair amount of which is correlated back to internal users some authorized and some not).

While I think these devices are necessary, I wonder what is being done both proactively and reactively to the offending user and, more broadly, the user population? Yes, there will always be malicious users regardless of what is done but I am curious to know what programs are directed at the user population from a security point of view.

Tags: , , , ,

Comments

Lee, 
 
There has not been much done in this area to date, except for Trustifier technology. Trustifier is a fine-grained access and audit control technology that works at the data file level for all authorized users. The existing IT infrastructure is converted into a least privilege, deny-by default environment. 
 
There has never been an 'authorization' component on systems or in the network, post-authentication, and authentication can not act as a proxy for authorization where a trusted environment is truly required,(which is everywhere, really). 
 
This authorization component constitutes the 'internal controls' that have never been part of OS design, and is the inherent design flaw that is the cause of the dysfunctionality (and failure) of the IT security industry. 
 
Trustifier is a run-time injection of internal controls into existing OSs to correct that omission.
Posted @ Monday, February 09, 2009 1:08 PM by Rob Lewis
Post Comment
Name
 *
Email
 *
Website (optional)
Comment
 *

Allowed tags: <a> link, <b> bold, <i> italics