Embracing STIX and TAXII standards
It's widely accepted that signature files (DATs) are no longer enough to protect your network from malware -- especially now that some malware is so sophisticated it can actually alter its appearance. According to Jon Oltsik, ESG senior principal analyst, one solution to this problem is cloud-based security intelligence. Although Oltsik describes this technology as a "good thing," he expresses his concern that there are still two "fundamental problems"--redundancy and a lack of consistency. That said, Oltsik writes that two standards, Structured Threat Information Expression (STIX) and Trusted Automated Exchange of Indicator Information (TAXII) can remedy the consistency problem. But users and companies need to publicly show their support for these standards if there is any chance for them to be widely deployed.
Read more about the problems associated with security intelligence and why Oltsik feels the security world should embrace these standards in this blog post.
Stop the rodents: Tackling rogue devices in the BYOD Era
Fending off viruses and malware is hard enough -- let alone when you throw technologies like open Wi-Fi networks, the Internet of Things and BYOD into the mix. This lethal combination of technological advances and malware has led to a "rodent problem" -- also known as the "Rogue Devices in the Network" issue. This issue has been additionally fueled by the BYOD trend -- making it increasingly difficult to uncover to whom an IP address belongs and thus sparking the increased presence of unapproved devices (aka rodents) in the network.
So what's a network admin to do to remedy this problem? In this blog, Don Thomas Jacob outlines a few different approaches you can use to rid your network of rodents for good.
OpenStack is hard but the community is providing training options
Exactly how difficult is it to install and manage OpenStack cloud software? According to blogger Keith Townsend, one thing is for certain -- people don't seem to care. He feels it is evident that there is a lack of both interest and knowledge surrounding the technology. This doesn't have to be the case, however, for there are several resources available to broaden the understanding of OpenStack.
Explore these OpenStack training opportunities in this blog.
Reflection on enablement
It's no secret that new technologies are never-ending, and in response, businesses tend to scramble to either keep up or they chose to stick to what they know. According to mobility engineer Brian Katz, it’s difficult to know which route to take because so many different experts push different technologies -- and sometimes for the wrong reasons. He says when people are just looking to "get a piece of the pie" and crush the competition, trust also becomes an issue. After all, the fact of the matter is not every solution is going to be a perfect match for every company.
Katz offers advice to those trying to build themselves up by always shooting their competition down. Check out this blog post as Katz makes his case for why friendly competition and cooperation might be the real road to success.
This was first published in September 2013