Network Security – Reducing the Vulnerabilities of Network

• Email
• Print
• ( 0 )
• 

As more and more enterprise customers take security to the next level, global security vendors are busy devising new ways to address network vulnerabilities in a better manner.

The bright emergence of security market is primarily driven by the increasingly sophisticated threats and management expenditure being faced at the enterprise level. Experts close to the industry believe that 2011 as the year of revenue stabilization for the network security industry globally as well as the Indian sub-continent.

As enterprise segment moves ahead with devising new ways to counter various threats coming from different direction, the rapid emergence of web and cloud technologies and an increased availability of mobile devices in the enterprise space has given companies a new mandate to address new security issues associated with growing freedom on the user front and the loss of control on the enterprise front.
 
The security vertical of the country is witnessing new threats growing explosively in number and complexity-attacks that exploit the vulnerabilities of applications, identity fraud and unauthorized access to corporate systems, and involves networking and inter-networking activities.

Another different but prevalent option which the enterprise segment is going for is managed security, which involves cutting through the whole security arena and adopting a managed services approach to security. Managed services cover everything from traffic analysis to VPNs and online firewall monitoring.

In addition, regulatory compliance requirement is also a significant driver for security solutions. Companies are required to align with international regulations, standards, and best practices when collaborating with business partners around the world.

Driving the Growth

It is a well known fact that the earliest adopters of network security have been the banking and finance verticals (BFSI), this is quite closely followed by the IT enabled Services (ITeS) and Business Process Outsourcing (BPO) segments. Other verticals like the retail, health, and education are now gradually catching up with the market scenario and creating major opportunities for the global as well as regional security vendors.

Enterprise customers are a high priority target market segment since a substantial volume of sensitive information is exchanged over corporate networks and the internet on a daily basis.

In today’s fast changing scenario, security technologies such as perimeter security continue to be important, however the emphasis on risk mitigation has expanded to the rest of the network, and has led to the concept of deperimeterization. This has created the need for securing resources on a machine-by-machine level, and most importantly to focus on the type and location of data in the organization and then create the securing process.

This has also driven the need for a 'defense in depth' approach which can make sure that the vulnerabilities of a network are safeguarded round the clock. As part of this, multiple layers of security technologies are used together to try and filter out as many threats as possible. Data leak prevention technology has also been a significant network security market driver.

US based global networking major, Cisco's SecureX Architecture comprises next-generation endpoint which can automatically find the nearest scanning element somewhere in the virtual security fabric and to make a seamless connection, hence helping inn terms of controlling the network vulnerabilities in an efficient manner.

Interestingly, the behavior of a hacker halfway around the world is noted, that information is shared, and traffic from the hacker's server is blocked. Managed security players today feel that this sector is poised for immense growth in the coming years.

Specially for cloud based services, vendors have designed their cloud based security platforms as foundations onto which more focused and customized modules can be added according to the need of an enterprise, paving the way for an increasingly rich offering in the security world. Cloud based malware scanners are harder for the underground 'black hats' to analyze, making it more difficult for them to produce a scanner-resistant malware.
 
Trends in Network Security

Many enterprises are experiencing that they must address security risk from multiple fronts to meet the evolving threat landscape as network vulnerability can inevitably result in loss of revenue opportunities and lower customer confidence as well.

There are 3 major security trends sweeping through the enterprise segment today. The rapid rise of the consumer focused endpoint, the onset of virtualization and cloud computing segment, and the growing usage of video conferencing or in some cases tele-presence. Each of these critical technologies are transforming business and forcing a fundamental shift in how the security is developed and deployed. Specially in the case of tele-presence, different security metrics need to be taken care of by the enterprise customers.

In the current scenario, the traditional network perimeter is shifting as new business practices emerge. Collaboration, IT consumerization, mobility, and new computing technologies are increasing productivity while presenting new security requirements.

Experts close to the industry strongly believe that there will be consolidation in this space as more and more companies address the same market scenario. In addition, through mergers and acquisitions, organizations will be able to provide customers a holistic solution more cost-effectively.

Today’s customers need consolidation of security functions to have a better control over their networks and network related resources. With more data, more mobile devices, cloud servers and virtual desktops, network and IT security will see significant innovation in technology and deployment, in order to deliver real value to customers.

Network security will continue to be a critical element for every industry and will expect a strong growth in the next few years. Growth in cloud networks will be a significant driver of innovative cloud security services.

The Duqu Threat

India Inc shuts server linked to Duqu computer virus as National Security Agency helps Banks battle hackers

Quite recently enough, Indian authorities seized computer equipment from a data center in Mumbai as part of an investigation into the Duqu malicious software that some security experts warned could be the next big cyber threat to the network security realm.

News of Duqu first surfaced last week when the security firm Symantec claimed that it had found a mysterious computer virus that contained code similar to Stuxnet, a piece of malware believed to have wreaked havoc on Iran's nuclear program.

Government and private investigators around the world are racing to unlock the secret of Duqu, with early analysis suggesting that it was developed by sophisticated hackers to help lay the groundwork for attacks on critical infrastructure such as power plants, oil refineries and pipelines.

He declined to comment on the investigation by authorities in India, but said that his agency was working with counterparts in other countries to learn more about Duqu.


UNLOCKING THE SECRET

Stuxnet is malicious software designed to target widely used industrial control systems built by Germany's Siemens (SIEGn.DE). It is believed to have crippled centrifuges that Iran uses to enrich uranium for what the United States and some European nations have charged is a covert nuclear weapons program.

Duqu appears to be more narrowly targeted than Stuxnet as researchers estimate the new trojan virus has infected at most dozens of machines so far. By comparison, Stuxnet spread much more quickly, popping up on thousands of computer systems.

Duqu is so named because of the fact that it creates files with "DQ" in the prefix. It was designed to steal secrets from the computers it infects, researchers say, such as design documents from makers of highly sophisticated valves, motors, pipes and switches etc. this is primarily driven by a desire to know more about the construction and design part of a facility or organisation.

Experts suspect that information is being gathered for use in developing future cyber weapons that would target the control systems of critical infrastructure. The hackers behind Duqu are unknown, but their sophistication suggests they are backed by wealthy government infrastructure, researchers say.

Such cyber reconnaissance missions are examples of an increasingly common phenomenon known as "blended" attacks, where elite hackers infiltrate one target to facilitate access to another.

In a startling accident, in March 2011, hackers stole digital security keys from EMC Corp's RSA Security division that they later used to breach the networks of defense contractor Lockheed Martin Corp. Researchers said they are still trying to figure out what the next phase of Duqu attacks might be.

The Way forward

Whatever be the case, with security breach related issues such as Duqu coming up every now and then, the overall segment of network security needs to be taken much more seriously today and companies needs to address vulnerabilities of network in a better manner.

Moving forward this could be a big challenge for enterprise customers as well as the security solution providers in the country as well as globally.