Back to Basics: AI Isn't the Answer to What Ails Us ...

Network Computing Dark Reading

Advertise

About Us

Newest First | Oldest First | Threaded View

[close this box]

100%

BrianN060,
User Rank: Ninja
2/9/2018 | 12:13:31 PM

A few more points

A good article, with several important best practices.

As for AI (Artificial Intelligence), it's an unfortunate choice for a label, for something that is actually a dynamic artifact of collective human intelligence. You're right about the effective PR.

You can add a couple of more items to your best practices list:

Limit data access, and type of access, on a needs basis. If a knowledge worker doesn't require access of a particular kind, and from a particular source, in order to do their job, they shouldn't have it.
Know what data you have. Very hard to tell if something is missing or has been altered, if you don't know what you have, and where it is.
Limit the proliferation of data. Yes, you need a well thought out plan to recover compromised data; but more backup copies doesn't equate to more security - just the opposite. Also, limit the data used for analysis, using the same needs-based criteria mentioned above. Part of that is not running analysis directly on line-of-business/transactional data.

Each of these goals is easier to implement if your organization uses the proper modeling methodologies.

Reply | Post Message | Messages List | Start a Board

Hot Topics

Editors' Choice

COVID-19: Latest Security News & Commentary

Dark Reading Staff 9/21/2020

Hacking Yourself: Marie Moe and Pacemaker Security

Gary McGraw Ph.D., Co-founder Berryville Institute of Machine Learning, 9/21/2020

Startup Aims to Map and Track All the IT and Security Things

Kelly Jackson Higgins, Executive Editor at Dark Reading, 9/22/2020

Live Events

Webinars

Hear Microsoft, FedEx & VMware Speak @ Interop Digital

Network Automation Summit presented by Network to Code at Interop Digital

Dark Reading Cybersecurity Summit @ Interop Digital

More Informa Tech Live Events

White Papers

[Forrester Research] The State of Data Security & Privacy

2020 SANS Cyber Threat Intelligence

Leveraging DevSecOps to Secure Cloud-Native Applications

CISO Conversations: Moving OT Development to the Cloud

Forrester: The Rise of the Business-Aligned Security Executive

More White Papers

Cartoon

Latest Comment: Yes Mother I know I've been eating too many cookies again! You can stop talking about that now......

Cartoon Archive

Current Issue

Special Report: Computing's New Normal

This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.

Download This Issue!

Back Issues | Must Reads

Flash Poll

All Polls

Reports

How IT Security Organizations are Attacking the Cybersecurity Problem

The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.

Download Now!

Special Report: Understanding Your Cyber Attackers

0 comments

2020 State of Cybersecurity Operations and Incident Response

0 comments

The Changing Face of Threat Intelligence

0 comments

More Reports

Twitter Feed

Tweets about "from:DarkReading OR @DarkReading"

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database

CVE-2020-15394
PUBLISHED: 2020-09-25

The REST API in Zoho ManageEngine Applications Manager before build 14740 allows an unauthenticated SQL Injection via a crafted request, leading to Remote Code Execution.

CVE-2020-15521
PUBLISHED: 2020-09-25

Zoho ManageEngine Applications Manager before 14 build 14730 has no protection against jsp/header.jsp Cross-site Scripting (XSS) .

CVE-2020-26103
PUBLISHED: 2020-09-25

In cPanel before 88.0.3, an insecure site password is used for Mailman on a templated VM (SEC-551).

CVE-2020-26104
PUBLISHED: 2020-09-25

In cPanel before 88.0.3, an insecure SRS secret is used on a templated VM (SEC-552).

CVE-2020-26105
PUBLISHED: 2020-09-25

In cPanel before 88.0.3, insecure chkservd test credentials are used on a templated VM (SEC-554).

To save this item to your list of favorite Dark Reading content so you can find it later in your Profile page, click the "Save It" button next to the item.

If you found this interesting or useful, please use the links to the services below to share it with other readers. You will need a free account with each service to share an item via that service.
Tweet This
[close this box]