Cloud computing security--coming soon to a device near you.
- IT TOPICS:Emerging Technology, Hardware, Management, Mobile, Networking, Security
Computerworld has a lot of great articles, but this one on the CloudAV service, seems to offer us a hint on a great approach to endpoint security.Â
One of the challenges that intrusion detection/prevention systems face is the issue of where the tools will sample traffic. The growing use of encrypted protocols routinely, for example, using ssh versus FTP, makes it more difficult to sample traffic at the network. The opposite approach, sampling on the endpoint device, can dissipate your responders across too many alerts, for example, a virus outbreak among multiple PC's.Â
CloudAV seems to offer the efficiency of a global inspection engine (and signatures) on the network, while a local agent works with new files at the endpoint, post decryption. This can allow researchers to get the big picture to what seems an uncoordinated series of small attacks that are, in fact, stepping stones.Â
As you look to track the computing 'next great trend', consider the needs of highly mobile workers who must access data and services anytime, from anywhere. For them, pre-configured embedded devices that offer user interface traits similar to home machines will be very attractive. Add in the ability to trust the network to defeat malware (versus hassle with unending client-side patches, lengthy and frequent malware signature downloads, and arcane configurations), well now, that's a trend to watch.
 jTraenkenschuh
Free Insider Guide