Risk
10/28/2010
12:17 PM
50%
50%

CIA Invests In Cloud, Web Analytics Startups

In-Q-Tel, a Central Intelligence Agency-based non-profit, will work with Cleversafe and Silver Tail Systems to adapt the companies' technologies for intelligence work.

Inside DHS' Classified Cyber-Coordination Headquarters
(click image for larger view)
Slideshow: Inside DHS' Classified Cyber-Coordination Headquarters

A Central Intelligence Agency-based organization has tapped two startups specializing in cloud-based storage and web analytics to work with federal intelligence agencies.

In-Q-Tel, a non-profit that identifies emerging technologies to support the U.S. intelligence community, has made strategic investments in Cleversafe and Silver Tail Systems.

Cleversafe, based in Chicago, provides cloud-based storage that takes a unique approach to storing data, which makes it a good fit for the kind of sensitive information the CIA and other intelligence agencies deal with, according to In-Q-Tel.

One of the concerns about using the cloud for storing data is how secure it will be on a network that also stores data that other companies and agencies might need to access.

Cleversafe uses Dispersed Storage technology, which transforms and portions out data into secure slices, and then disperses these slices to multiple storage nodes that are usually located in three or four data centers, according to In-Q-Tel. In this way, each slice becomes unrecognizable as data, which makes it inherently secure.

Palo Alto, Calif.-based Silver Tail Systems' technology also is focused on security. The company provides fraud-prevention technology for websites by using web behavioral analytics to identify threats, according to In-Q-Tel.

The way the technology works is to defend against attacks that attempt to exploit legitimate business logic in a web-based system, said In-Q-Tel. It monitors website traffic and identifies potential threats in real time, blocking them before they can infiltrate a system.

The CIA launched In-Q-Tel in 1999 as an independent entity to find useful new technologies to support the intelligence community's mission. In-Q-Tel's investment in Silver Tail and Cleversafe means the organization will work with both companies to adapt and optimize their technologies for the CIA and other intelligence agencies.

Other technologies targeted by In-Q-Tel in its more than 10 years of work include risk-assessment, mobility, knowledge management, and collaboration.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: just wondering...Thanx
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.