Vulnerabilities / Threats
10/16/2012
09:35 AM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Survey: Complexity Causes Security Incidents/System Outages

AlgoSec found that more than 50 percent of respondents reported a security breach, system outage, or both, due to complex policies

Roswell, GA – October 15, 2012 – AlgoSec, the market leader for network security policy management, today announced the release of "The Dangers of Complexity in Network Security," a report based on a survey of more than 125 IT security professionals that reveals complex network security policies, such as those found in multi-vendor environments, are directly related to system outages and security breaches.

The survey found that more than 50% of respondents reported a security breach, system outage, or both, due to complex policies. The report highlights that nearly 94% of organizations have deployed multi-vendor environments and nearly 75% of organizations manually manage networksecurity, despite the popular belief from roughly half of the respondents that consolidation would simplify management.

"Information systems' complexity has grown exponentially yet we continue down the same path - adding more and more layers of complexity," said independent information security consultant Kevin Beaver of Principle Logic, LLC. "Many IT managers and administrators couldn't tell you how secure their networks arebecause they simply don't know what's where and what's currently at risk. Complexity - and failing to acknowledge the complexity - are core contributors to the network security problems we face today."

Key findings from "The Dangers of Complexity in Network Security" survey include:

? Complexity Causes Risk – A majority of respondents reported that complex policies have caused a system outage or a security breach. Because of complex policies, 27.8 percent experienced a system outage, 14.3 percent experienced a security breach and 9.8 percent experienced both a system outage and a security breach.

? Network Environments Are Overwhelmingly Multi-vendor– According to the report, 93.9 percent of respondents have deployed solutions from multiple vendors in their environment with 56.5 percent having deployed solutions from four or more different vendors.

? Multi-vendor Environments Are Complex – "The Dangers of Complexity in Network Security" reveals that the greatest challenge of working with multiple vendors is the different expertise required (48.5 percent) while the greatest challenge of working with multiple devices is too many policies to manage (42.7 percent).

? Consolidation is Key to Simplifying Management – When asked, "What is the greatest benefit of consolidating network security vendors?" 48.8 percent responded, "Simplified management." Conversely, 36.9 percent believe that consolidating vendors prevents selecting best-in-class solutions.

"Organizations that manually manage complex multi-device and multi-vendor environments are making it harder on themselves than necessary to enforce their desired security posture," said Nimmy Reichenberg, Vice President of Marketing and Business Development, AlgoSec. "The good news for information security teams is that security policy management automation enables organizations to simplify policy and consolidate the number of consoles to manage, in turn improving security operations and reducing risk - even in the most complex environments."

? Findings from "The Dangers of Network Security Complexity" survey are available for download at: http://www.algosec.com/en/resources/examining_the_dangers_of_complexity_in_network_security_environments.

? Additionally, AlgoSec and Kevin Beaver, CISSP and independent information security consultant with Principle Logic, LLC will be examining the survey findings with in an upcoming webcast on November 1 at 11am ET. Register here.

About AlgoSec

AlgoSec is the market leader in network security policy management. AlgoSec enables security and operations teams to intelligently automate the policy management of firewalls, routers, VPNs, proxies and related security devices, improving operational efficiency, ensuring compliance and reducing risk.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-6117
Published: 2014-07-11
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

CVE-2014-0174
Published: 2014-07-11
Cumin (aka MRG Management Console), as used in Red Hat Enterprise MRG 2.5, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

CVE-2014-3485
Published: 2014-07-11
The REST API in the ovirt-engine in oVirt, as used in Red Hat Enterprise Virtualization (rhevm) 3.4, allows remote authenticated users to read arbitrary files and have other unspecified impact via unknown vectors, related to an XML External Entity (XXE) issue.

CVE-2014-3499
Published: 2014-07-11
Docker 1.0.0 uses world-readable and world-writable permissions on the management socket, which allows local users to gain privileges via unspecified vectors.

CVE-2014-3503
Published: 2014-07-11
Apache Syncope 1.1.x before 1.1.8 uses weak random values to generate passwords, which makes it easier for remote attackers to guess the password via a brute force attack.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.