KT

very well said here….software security is not about firewalls and protection from outside, it is about security your data and thinking from inside

De-perimeterization explained

    The huge explosion in business use of the Web protocols means that:
   

• today the traditional “firewalled” approach to securing a network boundary is at best flawed, and at worst ineffective. Examples include:
         
  • business demands that tunnel through perimeters or bypass them altogether
  • IT products that cross the boundary, encapsulating their protocols within Web protocols
  • security exploits that use e-mail and Web to get through the perimeter.

        

• to respond to future business needs, the break-down of the traditional
  distinctions between “your” network and “ours” is inevitable
• increasingly, information will flow between business organizations over
  shared and third-party networks, so that ultimately the only reliable
  security strategy is to protect the information itself, rather than the
  network and the rest of the IT infrastructure   

This
trend is what we call “de-perimeterization”. It has been developing for
several years now. We believe it must be central to all IT security
strategies today.

The de-perimeterization solution

    While
traditional security solutions like network boundary technology will
continue to have their roles, we must respond to their limitations. In
a fully de-perimeterized network, every component will be independently
secure, requiring systems and data protection on multiple levels, using
a mixture of

• encryption
• inherently-secure computer protocols
• inherently-secure computer systems
• data-level authentication

The design principles that guide the development of such technology solutions are what we call our “Commandments”, which capture the essential requirements for IT security in a de-perimeterized world.

Rational Security: The British Are Coming! In Defense (Again) of the Jericho Forum…

technorati tags:security, kartik, trivedi