Security efforts in '04 still fall short

Security efforts in '04 still fall short

From the Editors:
We've challenged our expert contributors to foretell what 2004 has in store for infosecurity. Read what all of our experts had to say, and let

    Requires Free Membership to View

    Login

    SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

us know what you foresee in 2004.

JONATHAN CALLAS
Jon is the CTO and founder of PGP Corp. He is an acknowledged expert in all major aspects of contemporary business security, including cryptography, operating system security, public key infrastructure and intellectual property rights. As a contributing expert for SearchSecurity, Jon answers your cryptography questions. Send Jon your questions or comments on his predictions via our Ask the Expert feature.

Computer security is a remarkably slow-moving discipline. Things don't change all that fast. Consequently, my predictions for this year are going to resemble my predictions for last year. However, there is nonetheless change.

  • There will be a major worm/virus/whatever outbreak. It will be severely annoying. (For example, last year, there was SoBig, Blaster, and so on. SoBig took up most of a month's work for one friend of mine. This is severely annoying.) If people patched their systems regularly, it wouldn't be an issue. People who do patch their system won't have a problem. People who use other (non-MS) systems won't have a problem, either.

  • A combination of laws and customs will push companies and organizations towards more security, but it will still take longer than anyone would like. Budgets don't grow on trees, and "best effort" will still be not very good.

  • Security concerns are going to be further distracted by dealing with spam. The problem is that spam gets emotional reactions from everyone who gets it. The emotional reaction blinds people to the real issues. More ridiculous schemes have been thought up to fight spam than terrorism. Otherwise-sane people suggest solutions that are as draconian as they are unworkable. We'll see more of them.

  • We will, however, start to see some real progress made. We may not be able to tell it until the year after next, or perhaps the one after that, but I think we'll see the security situation bottom out -- if not actually improve.


This was first published in December 2003

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

Back to top