« Previous day (Jan 2, 2007) | Main | Next day (Jan 4, 2007) »

Wednesday Jan 03, 2007

A Different View at Security

Security is about how all of the products and processes fit together into a comprehensive ecosystem that protects a company's information and information assets – essentially the system. And the architecture for systemic security is based on a set of modular components, or micro patterns, that address a variety of security problems.

Hal Stern, VP of Systems Engineering welcomes Glenn Brunette, distinguished engineer, security expert, and fellow Jersey native to discuss the difference between systemic security and secure systems.

Brunette discusses how early on, architectural patterns were discovered from customer deployments. This led to the ability to instantiate the patterns with a variety of products and services based on individual customer requirements while maintaining the integrity of the security architecture.

Properties we might try to capture include:

  • Self Preservation - that every element within the environment should be able to protect itself from attack
  • Defense and depth
  • Mutual reinforcing layered security controls
  • Compartmentalization
  • Lease privileges to contain and limit exposure

    Check out the full podcast to understand why security is not about products – but about the products and the processes that fit together into a comprehensive ecosystem that protects information assets.

    Links:



    Show Transcript
    Systemic Security Website
    Glenn Brunette's Blog
    Alec Muffett's Blog
    Alec Muffett Security Video
    Contrarian Minds: Making Security Simple
    Inner Circle: Sun Systemic Security: Building Blocks for the Secure Enterprise

    • Posted at 08:16AM Jan 03, 2007 by Laura Ventura in Sun [permalink] Comments [2]

    Like this post? digg | slashdot | del.icio.us