Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Endpoint

2/4/2016
02:00 PM
50%
50%

Cybersecurity Smackdown: What Side Are You On?

Analytics vs. Encryption. Prevention vs. Detection. Machine Learning: Promise or Hype? The Firewall: Dead or Still Breathing? The sharpest minds in the security industry debate some of the industry's most contentious issues.

It’s debate season – at least in the political realm. So to get into the spirit of the US primary election, Dark Reading has put together in one place excerpts from our ongoing series of great cybersecurity debates about four hot new information security technologies versus their legacy counterparts. Industry leaders make impassioned arguments for the new versus the tried and true, or a combination of the two.

 

ANALYTICS VS. ENCRYPTION

Encryption Has Its Place But It Isn’t Foolproof

By Doug Clare, Vice President of Product Management, FICO

Encryption technology is improving, as are best practices in deploying it; and everyone should embrace these improvements. But encryption alone is not enough, and may induce a false sense of security among those who depend on it. Read more.

As Good As They're Getting, Analytics Don't Inherently Protect Data

By Scott Petry, Co-Founder & CEO of Authentic8

The suggestion to “use analytics to secure your system” is flawed, and the argument to shift away from data security systems like encryption and move to analytics is fallacious. In fact, analytics is not an either-or-choice with encryption. Suggesting that firms choose between the two is like a doctor telling a patient to choose either vitamins or exercise. Both have their place in a healthy lifestyle. Read more.

 

MACHINE LEARNING: HYPE VS. PROMISE   

Machine Learning Is Cybersecurity's Latest Pipe Dream

By Simon Crosby, co-founder and CTO at Bromium

There is a huge difference between being pleased when Netflix recommends a movie you like, and expecting Netflix to never recommend a movie that you don’t like. So while applying machine learning to your security feeds might deliver some helpful insights, you cannot rely on such a system to reliably deliver only valid results. Read more.

Machine Learning: Perception Problem? Maybe. Pipe Dream? No Way!

By Mike Paquette, VP Products, Prelert

In the most common misperception, machine learning is thought to be a magic box of algorithms that you let loose on your data and they start producing nuggets of brilliant insight for you. If you apply this misperception to the use of machine learning for cybersecurity, you might think that after deploying it, your security experts will be out of a job since algorithms will be doing all their important threat detection and prevention work. The reality is that ML is a practical way to use newer technology to automate the analysis of log data to better detect cyberthreat activity, under the direction and guidance of an organization's security experts. Read more

 

PREVENTION VS. DETECTION

Time’s Running Out for the $76 Billion Detection Industry

By Simon Crosby, co-founder and CTO at Bromium

Enterprises spend a mind-boggling $76 billion each year to “protect” themselves from cyber-attacks, but the bad guys keep winning because most protection solutions are based on detection instead of prevention. What’s wrong? The answer is the same today as it was in ancient Troy when the Greek army suddenly disappeared, leaving behind an innocent-looking horse that the Trojans willingly brought inside the gates. Read more.

Detection: A Balanced Approach For Mitigating Risk

By Josh Goldfarb, VP and CTO - Emerging Technologies, FireEye

Prevention is necessary, but not sufficient, for a robust and mature security program. Only detection and response can complete the security picture that begins with prevention. Read more

 

THE FIREWALL IS DEAD. LONG LIVE THE FIREWALL.

Why the Firewall is Increasingly Irrelevant

By Asaf Cidon, Co-Founder & CEO, Sookasa

Firewalls only protect what work used to be, not what it is today, a distributed collection of employees connected by mobile devices, in turn connected to the cloud. The only way to secure all company data, then, is to extend enterprise-grade security to these employees’ devices and cloud applications. Read more.

Firewalls Sustain Foundation of Sound Security

By Jody Brazil, Co-Founder & CEO, FireMon

Effective security management will always retain a multi-layered approach necessitating mechanisms that control and limit access. While this may not someday require dependence on network security devices, in today’s environment the firewall remains one of the critical building blocks of network security. Read more

 Interop 2016 Las VegasFind out more about cutting edge security at Interop 2016, May 2-6, at the Mandalay Bay Convention Center, Las Vegas. Register today and receive an early bird discount of $200.

 

 

Dark Reading's Quick Hits delivers a brief synopsis and summary of the significance of breaking news events. For more information from the original source of the news item, please follow the link provided in this article. View Full Bio
 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
lorraine89
50%
50%
lorraine89,
User Rank: Ninja
9/26/2016 | 10:06:26 AM
Cyber security
Nice informative article. Though no matter if it is Analytics vs. Encryption. or Prevention vs. Detection at the end of the day, the side which incorporates taking preventive measures before hand is the winning one. Encryption for instance is by far the best method to secure your online connections as well as your personal files or folders on systems. Online encryption in the form of vpn is essential like I use Purevpn to deploy encrypted connection to my server for privacy and security. 
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
2/9/2016 | 12:55:23 PM
Re: Adopt key less encryption
Quantum computing and the security solutions that it can provide particularly excite me.  It's hard to defeat quantum physics when you have the observer effect and dark matter and all of these mysteries at play.

Of course, as the field -- and our understanding of it -- becomes more advanced, perhaps so too will hacking methods.
Joe Stanganelli
50%
50%
Joe Stanganelli,
User Rank: Ninja
2/9/2016 | 12:52:59 PM
Re: The problem is people.
@Stephen: Indeed!  As many security colleagues of mine agree, you can have the best security tools in the world -- but they will do you no good if your employees leave the doors wide open!

It's analytics.  It's encryption.  It's firewalls.  It's anti-malware.  It's training.  It's EVERYTHING.
oneilldon
50%
50%
oneilldon,
User Rank: Guru
2/7/2016 | 3:49:02 PM
Adopt key less encryption
Even the ordered mathematical encryption approach is losing ground to advancements in computational capability. In addition to being far too computationally intensive, the operational advantage of pairing of math-based encryption systems and advanced computing, on the verge of Quantum Computing, may be tilting in favor of the determined STEM-endowed nation state adversary.

Now a national security and competitiveness challenge, the state of encryption calls for new thinking, innovation, and disruptive action. It is a false promise that ordered mathematical encryption will yield privacy and security.

One alternative to extricate ourselves from this trap is to invent and adopt key less encryption without dependence on ever increasing advancements in computational technology and without encryption keys to be confiscated by the government only to be hacked by bad actors.
StephenR232
50%
50%
StephenR232,
User Rank: Apprentice
2/6/2016 | 7:01:01 PM
The problem is people.
The root cause for most events is people doing dumb things they've already been told not to do. The only meaningful solution is to take people out of the equation. When the internet is for the most part machines interacting with other machines is when this arms race can be fought to a stalemate. Until then, the side with the most people will lose.
COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/3/2020
Pen Testers Who Got Arrested Doing Their Jobs Tell All
Kelly Jackson Higgins, Executive Editor at Dark Reading,  8/5/2020
Exploiting Google Cloud Platform With Ease
Dark Reading Staff 8/6/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Changing Face of Threat Intelligence
The Changing Face of Threat Intelligence
This special report takes a look at how enterprises are using threat intelligence, as well as emerging best practices for integrating threat intel into security operations and incident response. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-16219
PUBLISHED: 2020-08-07
Delta Electronics TPEditor Versions 1.97 and prior. An out-of-bounds read may be exploited by processing specially crafted project files. Successful exploitation of this vulnerability may allow an attacker to read/modify information, execute arbitrary code, and/or crash the application.
CVE-2020-16221
PUBLISHED: 2020-08-07
Delta Electronics TPEditor Versions 1.97 and prior. A stack-based buffer overflow may be exploited by processing a specially crafted project file. Successful exploitation of this vulnerability may allow an attacker to read/modify information, execute arbitrary code, and/or crash the application.
CVE-2020-16223
PUBLISHED: 2020-08-07
Delta Electronics TPEditor Versions 1.97 and prior. A heap-based buffer overflow may be exploited by processing a specially crafted project file. Successful exploitation of this vulnerability may allow an attacker to read/modify information, execute arbitrary code, and/or crash the application.
CVE-2020-16225
PUBLISHED: 2020-08-07
Delta Electronics TPEditor Versions 1.97 and prior. A write-what-where condition may be exploited by processing a specially crafted project file. Successful exploitation of this vulnerability may allow an attacker to read/modify information, execute arbitrary code, and/or crash the application.
CVE-2020-16227
PUBLISHED: 2020-08-07
Delta Electronics TPEditor Versions 1.97 and prior. An improper input validation may be exploited by processing a specially crafted project file not validated when the data is entered by a user. Successful exploitation of this vulnerability may allow an attacker to read/modify information, execute a...