ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


Security threats Toolkit

The future of IT security is fewer walls, not more

Dan Ilet ZDNet.co.uk

Published: 07 Apr 2005 17:35 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

The big problem is how we are going to operate our businesses in one, two or three years’ time. It’s a about being able to operate your entire business on the Internet. In reality, you’d be daft to do that — it would be a [subsection] of that, but that’s the pure idea.

Do you really see businesses like ICI and those of other Jericho members such as BP becoming deperimeterised any time soon?
In two years' time I’d like to oversee a business lead transformation at ICI working in a deperimeterised environment. The key to that is security returning many millions to ICI’s bottom line. If it doesn’t do that we shouldn’t be doing it at all.

I think we'll start in two years. That's a feasible option. BP — in terms of changing entire infrastructures, it’s a good few years away. And we’ll need serious business justifications for it — and rightly so.

What do you think the outcome of all this will be?
My personal opinion is that all large corporations are going to be faced with doing this. The only real question for me is: "Do you want to get up front and drive it or do you want to follow?"

What are you looking for in products exactly?
To have security built in not bolted on. Having inherently secure products and systems rather than systems where we put lots of proof, wrappers around data.

How does that compare with security technology now?
If you look at what’s hot now, VoIP as a protocol is inherently insecure. The vendors will tell you 'you can do it', give you an IPSEC connection and tell you it’s OK. But that’s bolt-on security. That's using VoIP with transport layer security.

Why is it difficult to inform people about deperimeterisation?
When you get chief information security officers from 50 global 200 companies, we’ve all got daytime jobs. We can all discuss and brain dump. The hard stuff is technical writing and the back office stuff. It’s time consuming. If we can find that we take the thought leadership, it’s win-win. We get stuff out of vendors for the end user.

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Did you find this article useful?
202 out of 425 people found this useful



Company/Topic Alerts

Create a new alert from the list below:




Sentry Posts Blog

Nasa and the virus

Yesterday the BBC ran a story about a computer virus making it into orbit, which I read with incredulity. OK, it's a nice silly season story on the surface, but what really got me was... More

3 comments

Customer data found on eBay server hig...

The recent news about customer details being retrieved from a server sold on eBay is yet another story about the sorry state of information security in the electronic age (see: http://news.zdnet.co.uk/...m).... More

Post a comment

Does it matter if you are an aardvark...

In spam terms, apparently it does. According to Cambridge University security expert Richard Clayton, if your email address is aardvark at animal.net, you are more likely to receive... More

2 comments