Security

11:25 AM
Mike Raggo
Mike Raggo
Commentary
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Anti-Malware Doesn’t Cut It in the Mobile Era

As operating system architectures shift from open file systems to application sandboxes, traditional anti-virus becomes less relevant. Enterprise mobility management provides both proactive countermeasures and reactive mitigation.
2 of 2

2 of 2
Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
Becca L
50%
50%
Becca L,
User Rank: Author
6/30/2014 | 12:46:37 AM
Protection to Prevention
Thanks Mike, great points about this evolution in security, it really has moved from an area that focuses on protection to one of prevention, and requires a completely new approach. Managing enterprise security requires a constant finger on the pulse of security technology, and it's interesting to see how mobile architecture is adapting. I don't see malware becoming completely irrelevant in the mobile era, but cetainyl it is less impactful than in "simpler times."
Greg MacSweeney
50%
50%
Greg MacSweeney,
User Rank: Author
6/25/2014 | 9:43:04 AM
Re: Less relevant but not irelevant
True. You can't abandon AV alltogether...it is still important. As you mentioned, it is important to have multiple layers to protect against threats, since a single barrier is easier to defeat.
kiers
50%
50%
kiers,
User Rank: Apprentice
6/21/2014 | 4:10:25 AM
How do you ensure Vendors/Stores will implement the latest tech
Yes there are great technologies out there, and there are RECALCITRANT industry standards set by quasi government bodies like PCI-DSS.

 

The Target stores breach proved that Target bore no financial burden compared to customers. So where's the enforcement? PCI and related standards continue to lumber along in the STONE AGE. What will force companies like Target to get their act together????
anon8486258036
50%
50%
anon8486258036,
User Rank: Apprentice
6/20/2014 | 3:06:03 PM
Less relevant but not irelevant
There are some good ponts in this article.  But i think it is important to remember that AV engines, which do function very much like the app reputation service will still play an important role in the future.  While dynamic analysis tools like FireEye are considered nextgen, you still want an AV or ideally multiple av's infront of those boxes to weed out the known threats so you can concentrate your resources on the sandbox.  We have dynamic analysis and we have a metascan box that uses 8 AV engines to scan everything before the fireeye box. cuts down on known malware dramatically. 

 

 
More Commentary
SEC Examinations: What to Expect When the SEC Is on It's Way
Theodore Eichenlaub highlights trends in SEC expectations and how to approach a risk assessment of your compliance program.
The Value of Predictive Analytics in Financial Services
Risk management and customer data are two key areas where data analytics is being applied in financial services.
Moving the Trader Closer to the Investment Process
The sell side can demonstrate more value by applying analytics to pre- and post-trading, and by educating buy-side clients about broker segmentation, trading behavior and algorithm shortcomings, and more.
Wirehouses May See More Independent BDs as Retention Packages Expire
Retention bonuses are expiring, leaving brokerages vulnerable to attrition. Is access to technology making it easier for brokers to go independent?
SCI: A Whale of a Regulation
The SEC's Reg SCI weights in at a whopping 742 pages. Here is what you need to know about the oversized regulation.
Register for Wall Street & Technology Newsletters
White Papers
Current Issue
Wall Street & Technology - Elite 8, October 2014
The in-depth profiles of this year's Elite 8 honorees focus on leadership, talent recruitment, big data, analytics, mobile, and more.
Video