Cisco has released its annual security report providing a concise summary of the past year's major issues and offering predictions for security threats in 2008 and apt recommendations.
The 2007 Cisco Annual Security Report, released in conjunction with the launch of the company's updated Cisco Security Center site, tailored its study according to a set of seven risk management categories, many of which extend well beyond isolated content security issues.
The categories are vulnerability, physical, legal, trust, identity, human and geopolitical, and together they encompass security requirements that involve anti-malware protection, data-leakage protection, enterprise risk management, disaster planning, and more.
The report's findings reinforce the fact that security threats and attacks have become more global and sophisticated. As the adoption of more and more IP-connected devices, applications, and communication methods increases, the opportunity emerges for a greater number of attacks. These trends are writing a new chapter in the history of security threats and attack methodologies.
According to Ciscos Chief Security Officer John Stewart, information security is no longer just a battle against a virus or spam attack and that there are oftentimes legal, identity-based and geopolitical factors involved.
"Cybercrime is evolving before our eyes, oftentimes using well-known techniques seen before only in electronic form," said Stewart.
"You just can't afford to view information security threats as a standalone duel against a virus or a phishing attack; threats involve social engineering and technology, trust and pervasive use. Today, the effort to secure businesses, personal identities and countries requires a greater level of coordination among parties that have not traditionally worked together as closely as they'll need to. IT security teams, businesses, government, law enforcement, consumers, citizens: They're all targets, yet they're also allies. The effectiveness of national, enterprise and personal security will depend on the collaboration and communication among all of these constituencies."
The key to this collaboration is education and Cisco offers several recommendations for each of the seven risk-management categories
The Cisco report offers several recommendations for each of the seven risk-management categories. Some of the noteworthy recommendations include:
Conduct regular audits within organizations of attractive targets and evaluate the avenues that can be used to attack them. "Exploits are too often successful because of not following security basics: host-based intrusion prevention, patches and upgrades with security fixes, and regular audits," Stewart said.
Understand the notion that threats follow usage patterns. "Where the majority goes, attackers will follow," Goddard said. "Every time a new application or device enters the fold, new threats will emerge."
Change the mindset of employees, consumers and citizens who consider themselves innocent bystanders and empower them to become active influencers with shared ownership over security responsibilities. IT teams should help lead this charge, but it's not solely their problem.
Make security education a priority. Businesses, security vendors, and government agencies need to invest in security education and awareness-building. This effort should include industry-wide collaboration among partners and competitors.
Institutionalize IT security education by incorporating it into school curricula.
Consider more than just performance when building a secure network. Focus on the network's ability to collaborate, inspect, adapt and resolve security issues end to end, from gateways and servers to desktops and mobile devices.
Security vendors need to provide comprehensive security solutions that extend throughout the network infrastructure, application mix and data itself. |
