PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
September 2011

Bring back the lulz by changing up your information security model

I’m writing this column for the lulz. I have a cause, see. And my cause is the lulz. Security needs more lulz. You’re too uptight. We’re too uptight. We’ve all got whiplash trying to duck-and-cover from all these APTs flying about. Your shoulders ache because your trusty SecurID token could be pwned. You don’t sleep because some hacker with a cause might not like your CEO’s politics and could try to take down your network, or worse, leak data and maybe even put lives in danger. You’re a mental and physical wreck. You’ve got the thousand-yard stare. The jungle is full of bad guys out there, and the problem is you don’t know who’s shooting at you. Today’s creep could be some Russian mobster stealing credit cards to pad his online marketplace. Tomorrow’s creep could be some Anonymous type with some SQL injection code and an agenda. The buzzing in your head is the sound of change. All that defense-in-depth and perimeter-based stuff you spent hundreds of thousands of dollars on may be just security theater as Bruce Schneier likes to ...

Access this PRO+ Content for Free!

By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.

You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

Features in this issue

Columns in this issue