Security

11:25 AM
Mike Raggo
Mike Raggo
Commentary
Connect Directly
Twitter
RSS
E-Mail
50%
50%

Anti-Malware Doesn’t Cut It in the Mobile Era

As operating system architectures shift from open file systems to application sandboxes, traditional anti-virus becomes less relevant. Enterprise mobility management provides both proactive countermeasures and reactive mitigation.
2 of 2

2 of 2
Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
Becca L
50%
50%
Becca L,
User Rank: Author
6/30/2014 | 12:46:37 AM
Protection to Prevention
Thanks Mike, great points about this evolution in security, it really has moved from an area that focuses on protection to one of prevention, and requires a completely new approach. Managing enterprise security requires a constant finger on the pulse of security technology, and it's interesting to see how mobile architecture is adapting. I don't see malware becoming completely irrelevant in the mobile era, but cetainyl it is less impactful than in "simpler times."
Greg MacSweeney
50%
50%
Greg MacSweeney,
User Rank: Author
6/25/2014 | 9:43:04 AM
Re: Less relevant but not irelevant
True. You can't abandon AV alltogether...it is still important. As you mentioned, it is important to have multiple layers to protect against threats, since a single barrier is easier to defeat.
kiers
50%
50%
kiers,
User Rank: Apprentice
6/21/2014 | 4:10:25 AM
How do you ensure Vendors/Stores will implement the latest tech
Yes there are great technologies out there, and there are RECALCITRANT industry standards set by quasi government bodies like PCI-DSS.

 

The Target stores breach proved that Target bore no financial burden compared to customers. So where's the enforcement? PCI and related standards continue to lumber along in the STONE AGE. What will force companies like Target to get their act together????
anon8486258036
50%
50%
anon8486258036,
User Rank: Apprentice
6/20/2014 | 3:06:03 PM
Less relevant but not irelevant
There are some good ponts in this article.  But i think it is important to remember that AV engines, which do function very much like the app reputation service will still play an important role in the future.  While dynamic analysis tools like FireEye are considered nextgen, you still want an AV or ideally multiple av's infront of those boxes to weed out the known threats so you can concentrate your resources on the sandbox.  We have dynamic analysis and we have a metascan box that uses 8 AV engines to scan everything before the fireeye box. cuts down on known malware dramatically. 

 

 
More Commentary
Leaving Out the Welcome Mat for Financial Services Hackers
Everyone knows the financial services industry is a prime target for hackers. Despite the dangers, many applications have software vulnerabilities that expose real risks.
4 Surprising Ways Firms Think About Data Security Costs
Almost 28% of firms are willing to bear the cost of some financial losses due to cybercrime, because it's less than the cost of upgrading IT systems.
CIO + CFO Doesn’t Equal Mars Vs. Venus
From my decades of experience, CIOs and CFOs have more in common than you may think.
Will Apple Legitimize Mobile Payments?
The company announced its new mobile payments system, Apple Pay, during a news media event today.
The Art and Science of Leveraging Cloud Infrastructure
Now that cloud providers have addressed many of the more practical concerns of their users, data segregation has become the major challenge in cloud deployments.
Register for Wall Street & Technology Newsletters
White Papers
Current Issue
Wall Street & Technology - July 2014
In addition to regular audits, the SEC will start to scrutinize the cyber-security preparedness of market participants.
Video