Sergey Nivens - Fotolia
Cisco loses security execs to Intel after strong security growth
Despite the departure of two key security execs at Cisco, there is no need to worry that the vendor's security initiatives will slow down any time soon. At least that's what Paula Musich at Current Analysis says about the exits of Chris Young and Scott Lovett, both of whom moved on to work for Intel Security.
While there is some switching of management roles at Cisco, executive leadership has not experienced any loss. Musich says that David Goeckeler, who has been called up to replace Young, has what it takes to continue to grow a security team. "He was the executive responsible for bringing the Sourcefire acquisition to the table, and he is described as being 'instrumental' in developing Cisco's end-to-end security architecture and (rather swiftly) integrating Sourcefire products into Cisco security solutions as vice president of product and platform engineering," says Musich.
The only thing that could happen that might raise concerns is if Cisco's security group is placed under the management of another unit in the wake of Cisco's most recent reorganization.
Read more of Musich's take on the switching up of executive leadership within security teams.
CloudFare risks financial loss in the name of public privacy
Website encryption just became more accessible. According to a Wall Street Journal blog by Danny Yadron, CloudFare is allowing its 2 million customers to encrypt website connections for free. San Francisco-based CloudFare, a cybersecurity and network company, is led by Matthew Prince. Prince says that his motive is to make encryption a security standard. He says that companies will be able to protect their information from hackers as well as government spies. Yadron writes that only a few million out of 1 billion websites are currently encrypted, citing statistics compiled by Netcraft. Why? As usual, it comes back to the high cost of security. Prince worked with the companies that issue encryption certificates to bring down the cost, which he admits will lead to some financial loss for CloudFare. But it will not stop Prince from seeking new strategies to protect user privacy, Yadron says.
Read more about CloudFare's encryption initiative in the WSJ blog.
What you need to know about SPDY
PacketPushers blogger Steven Iveson puts down everything you will want to know about SPDY, the Google-designed protocol engineered to speed up downloading. Iveson says first and foremost that SPDY is not a replacement for HTTP. Instead, SPDY is an Internet protocol that will be at the base of the HTTP/2.O standard. The main idea behind SPDY is to increase performance by reducing multiple Transmission Control Protocol (TCP) connections. Although it is still early to see definite results, Iveson writes it is possible that we will see true request multiplexing, response prioritization and a server push. Although there are similarities between SPDY and HTTP, Iveson says not to expect the two to be compatible.
Read more of Iveson's description of the SPDY protocol.
The Internet can be as secure as you're comfortable with
Gartner analyst and blogger Paul Proctor asks the question of whether the Internet is secure enough. The answer, not surprisingly: Of course it's not, but people still use it. He proposes a new way to evaluate security: the business perspective. According to Proctor, the amount of security that a company needs should relate to the amount of trust it would want from its users. The more trust, the stronger the relationship will be. What goes into building this trust? The more security you are willing to pay for, the more trustworthy you will be. It's a balance between cost and risk. Ultimately, Proctor says, it's a choice that's up to the business.
Read more about what Proctor says about the cost/risk balance of security.