Assuming Your System Security Is Compromised

    The vast majority of security threats that wind up causing the most damage within IT organizations are fairly well known. The problem is that there hasn’t really been an effective way to deal with them.

    But Federated Networks CEO David Lowenstein says that’s all about to change with the emergence of a new Application Security Layer (ASL) protocol that is at the heart of a FN-Connect Secure Architecture developed by Federated Networks.

    Intended as a way to augment venerable secure sockets layer (SSL) technology, Lowenstein says the company has spent five years developing an approach that identifies so called ‘man-in-the-middle’ attacks such as phishing, pharming, DNS poisoning and proxying.

    Federated Networks, which today announced that the BT Ethical Hacking Center has validated its technology, claims to have essentially created a new layer of security software to ‘neutralize’ these attacks. This new layers sits alongside traditional security software that was created to protect, detect, monitor and recover.

    The problem, says Lowenstein, is that traditional security software assumes you can prevent the malware from getting onto systems in the first place. Federated Networks, says Lowenstein, starts out with the assumption that the malware is going to get onto your system one way or another. It’s the job of the security software to neutralize it once it gets on your system.

    However the task of securing our systems gets handled may not be all that much of a concern to customers. What they have noticed is that they have invested hundreds of thousands of dollars in security, and they still have problem with relatively simple malware attacks.

    So maybe the time has finally come to try a different approach, but the one thing that is for certain is that current approaches to IT security are leaving a lot to be desired.

    Mike Vizard
    Mike Vizard
    Michael Vizard is a seasoned IT journalist, with nearly 30 years of experience writing and editing about enterprise IT issues. He is a contributor to publications including Programmableweb, IT Business Edge, CIOinsight and UBM Tech. He formerly was editorial director for Ziff-Davis Enterprise, where he launched the company’s custom content division, and has also served as editor in chief for CRN and InfoWorld. He also has held editorial positions at PC Week, Computerworld and Digital Review.

    Latest Articles