Cloud Security Authors: Liz McMillan, Zakia Bouachraoui, Elizabeth White, Pat Romanski, Yeshim Deniz

Related Topics: Cloud Security, @CloudExpo

Cloud Security: Blog Feed Post

Security Conference in Honolulu July 26, 2012

I did not see Symantec, McAfee and others

Security of every kind of device from hand-held to Cloud was discussed at this one day conference in Honolulu hosted by Data Connectors. There were 8, approximately one-hour sessions from 8:15 to 16:15.

Thursday, July 26, 2012
Waikiki Beach Marriott Resort &  Spa                                                                                                                        
2552 Kalakaua Avenue, Oahu                                                                                                                      
Honolulu, Hawaii 96815 USA

Here is a A-Z list of companies that participated and or talked about their products:

• ANUE Systems
• Aruba
• Beyond Security
• Bit 9
• Core Security- Thinking ahead
• Cyber-Ark -Security that empowers people
• Damballa –
• Fortinet
• Hawaiian Telecom
• Infoblox
• ISD Security
• LanDesk
• Paloalto Networks-The network security company
• Radware
• Refrentia
• Sophos- Simply Secure
• Secure Technology Hawaii
• Trend Micro
• Varonis-All about the Data
• WatchGuard

I managed to speak to couple of the vendors to get into the mood of security and it was interesting.

The talks were interesting too.  As always some were good and some were mediocre.

WatchGuard presented ' Virtualization -Securing the Future ', the ins and outs of virtualization and how to secure virtualized environments. Virtualization is very attractive but presents its own set of challenges when it comes to security. Their XTM cornerstone, the Application Proxy probes the packet and checks the IP Header and the Protocol (TCP/UDP) and on finding a match digs in deeper the contents and works at the Application Layer. They claim that this is the key that other technologies miss. They seem to have Systems Manager Interface; a web interface and of course a command line interface to administer their product.
Aruba Networks presented ' Enabling secure BYOD over any network '. You heard it right, it was not BYOB! This was about onboarding and management of users of mobile devices in the context of an enterprise. This makes it possible to tell your employee, 'Bring your own device', we are not scared. Their product is better than existing products that target a single device. Their slogan is any device, any network, and any endpoint using their Aruba ClearPass.
Paloalto made presentation ' Breaking the Lifecycle of the Modern Threat ' on the threat landscape- what to expect and how to get yourself protected.

Bit9 (2002 company) spoke on ' Protection against Spear Phishing and the Modern Threats '. They listed out all the notable 2011 security breaches from Honda to ADP which included a bunch of high profile organizations like NASDAQ, Sony, Google, Citigroup etc. Threat comes in many shapes and forms. Hidden executables; Vulnerabilities; and portable storage devices. The human elements creating threats vary from mere criminal enterprises to Nation-states. Just imagine the kind of resources they can muster! I saw this graph in the presentation which was interesting- the peak in advanced threat appears to occur from about lunch time to evening six in Beijing!  Social engineering has brought in anti-social (anti-internet!) elements and social networking is another vector in this criminal operations. Solution is to use trusted software, detect the threat with real time sensor and stop the threat by controlling the application, follow it up measuring and monitoring risk and compliance with deep analytics.  Bit9 Global software Registry provides security to all the different items: Domain controllers, web Servers, Application Servers, Virtual Servers and a whole lot of others.

Fortinet and Hawaii Telecom made a joint presentation ' Delivering World-class UTM Solutions across Hawaiian Telecom '. Keep it simple was one of the items discussed. Increasing complexity of security solutions was 40% of the top challenges faced by the respondents who dealt with security. Fortinet seems to be in a good position with 18% of Market share in 2011 Q3. They are at the top-right of the Gartner's magic quadrant for Unified Threat Management.  Their slide on how their solution compares with traditional solutions which are cumbersome and costly was interesting. The core of it is the FortiOS, a security hardened OS that powers all FortiGate multi-threat security systems. The companies and organizations taking up Fortinet filled up the whole page of a slide. I especially liked the presentation by their Hawaiian presenter. It was a neat presentation.

ISD Security/SOPHOS: ‘ The security threat landscape, What's at risk and how to get the best protection ' was presented by Sophos evangelist, Arnie Almeida. It was interesting to hear that Social engineering, is a primary method of attack. I quote, ' Cyber criminals know what motivates people  (money, sex, gossip, etc.) and exploit these themes to infect computers and steal information '. I wonder why Arnie left out vanity and Narcissism!! The consequence of data loss is enormous. I was also under the impression that Windows was the most targeted OS but the Android leads the pack of threatened! Another interesting piece of info I learnt that 15% of all iPhone owners use very easy passwords like '0000' and '1234'. Sophos suggestion:  Use the following methods to secure, 'Encryption', 'encryption' and 'encryption'. Use encryption from desktop to the cloud including the USB Drives, CD/DVDs. Sophos is also a leader and figures in the Magic quadrant for end point protection. Their clientele list occupies a whole slide and its borders. Look for SophosLabs on the internet.

LanDesk software presented 'Managing the top 3 security challenges in a distributed environment'. The focus was on desktops on remote offices, these being more vulnerable than those in HQ. Virus attacks and installation of unauthorized software, downloads, etc. are more difficult to secure.

I did not see Symantec, McAfee and others.

Read the original blog entry...

More Stories By Jayaram Krishnaswamy

Jayaram Krishnaswamy is a technical writer, mostly writing articles that are related to the web and databases. He is the author of SQL Server Integration Services published by Packt Publishers in the UK. His book, 'Learn SQL Server Reporting Services 2008' was also published by Packt Publishers Inc, Birmingham. 3. "Microsoft SQL Azure Enterprise Application Development" (Dec 2010) was published by Packt Publishing Inc. 4. "Microsoft Visual Studio LightSwitch Business Application Development [Paperback] "(2011) was published by Packt Publishing Inc. 5. "Learning SQL Server Reporting Services 2012 [Paperback]" (June 2013) was Published by Packt Publishing Inc. Visit his blogs at: http://hodentek.blogspot.com http://hodentekHelp.blogspot.com http://hodnetekMSSS.blogspot.com http://hodnetekMobile.blogspot.com He writes articles on several topics to many sites.

Comments (0)

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

IoT & Smart Cities Stories
Business professionals no longer wonder if they'll migrate to the cloud; it's now a matter of when. The cloud environment has proved to be a major force in transitioning to an agile business model that enables quick decisions and fast implementation that solidify customer relationships. And when the cloud is combined with the power of cognitive computing, it drives innovation and transformation that achieves astounding competitive advantage.
DXWorldEXPO LLC announced today that "IoT Now" was named media sponsor of CloudEXPO | DXWorldEXPO 2018 New York, which will take place on November 11-13, 2018 in New York City, NY. IoT Now explores the evolving opportunities and challenges facing CSPs, and it passes on some lessons learned from those who have taken the first steps in next-gen IoT services.
SYS-CON Events announced today that Silicon India has been named “Media Sponsor” of SYS-CON's 21st International Cloud Expo, which will take place on Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Published in Silicon Valley, Silicon India magazine is the premiere platform for CIOs to discuss their innovative enterprise solutions and allows IT vendors to learn about new solutions that can help grow their business.
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand using interactive visualizations and salary indicator tools to maximize earning potential. Manish Dixit is VP of Product and Engineering at Dice. As the leader of the Product, Engineering and Data Sciences team at D...
SYS-CON Events announced today that CrowdReviews.com has been named “Media Sponsor” of SYS-CON's 22nd International Cloud Expo, which will take place on June 5–7, 2018, at the Javits Center in New York City, NY. CrowdReviews.com is a transparent online platform for determining which products and services are the best based on the opinion of the crowd. The crowd consists of Internet users that have experienced products and services first-hand and have an interest in letting other potential buye...
Founded in 2000, Chetu Inc. is a global provider of customized software development solutions and IT staff augmentation services for software technology providers. By providing clients with unparalleled niche technology expertise and industry experience, Chetu has become the premiere long-term, back-end software development partner for start-ups, SMBs, and Fortune 500 companies. Chetu is headquartered in Plantation, Florida, with thirteen offices throughout the U.S. and abroad.
The standardization of container runtimes and images has sparked the creation of an almost overwhelming number of new open source projects that build on and otherwise work with these specifications. Of course, there's Kubernetes, which orchestrates and manages collections of containers. It was one of the first and best-known examples of projects that make containers truly useful for production use. However, more recently, the container ecosystem has truly exploded. A service mesh like Istio addr...
SYS-CON Events announced today that DatacenterDynamics has been named “Media Sponsor” of SYS-CON's 18th International Cloud Expo, which will take place on June 7–9, 2016, at the Javits Center in New York City, NY. DatacenterDynamics is a brand of DCD Group, a global B2B media and publishing company that develops products to help senior professionals in the world's most ICT dependent organizations make risk-based infrastructure and capacity decisions.
Nicolas Fierro is CEO of MIMIR Blockchain Solutions. He is a programmer, technologist, and operations dev who has worked with Ethereum and blockchain since 2014. His knowledge in blockchain dates to when he performed dev ops services to the Ethereum Foundation as one the privileged few developers to work with the original core team in Switzerland.
Cloud-enabled transformation has evolved from cost saving measure to business innovation strategy -- one that combines the cloud with cognitive capabilities to drive market disruption. Learn how you can achieve the insight and agility you need to gain a competitive advantage. Industry-acclaimed CTO and cloud expert, Shankar Kalyana presents. Only the most exceptional IBMers are appointed with the rare distinction of IBM Fellow, the highest technical honor in the company. Shankar has also receive...