RSA « EMA Blog Community

The Leverage Attack: Do We Really Get It?

posted by Scott Crawford | February 11, 2013 | 0 Comments

Earth_Lever-300x190

“Give me a place to stand, and with a lever I will move the whole world.” –Archimedes In the wake of last week’s disclosure of an attack against Bit9, Jeremiah Grossman seems positively prescient. His New Year’s prediction about security’s immediate future was that attacks against security measures would increase. And why not? If defense...

Posted in IT Management, Scott Crawford, Security Tags: Bit9, Chief technology officer, Harry Sverdlove, Jeremiah Grossman, Malware, RSA, security, Waltham Massachusetts

Security in 2013: The “Productization” of Big Data

posted by Scott Crawford | January 29, 2013 | 0 Comments

data-explosion_300x190

In my last post, I noted that I expect intelligence and the coordination and integration of defense technologies to be key drivers of the IT security market in 2013. This is not just about some major vendors who have acknowledged their need for a wake-up call on these fronts. These are larger trends that are...

Posted in IT Management, Scott Crawford, Security Tags: Big data, EMC, NetWitness, Network Intelligence, RSA, RSA Conference, Security Information and Event Management, Shawn Rogers

Security in 2013: Intelligence, Coordination and Integration (and Will We Get There?)

posted by Scott Crawford | January 24, 2013 | 0 Comments

Binoculars-in-grass_300x190

I’ve happily managed largely to avoid getting entangled in the New Year’s ritual of security predictions, since these can, frankly, be fairly boring. But for those who expect such, here you go: Attackers will continue to succeed. Determined adversaries will become even more so. Moving one set of playing pieces does not alter the objectives...

Posted in IT Management, Scott Crawford, Security Tags: Big data, Business, Data center, Jeremiah Grossman, RSA, security, Wiktionary

Validating the Rise of Data-Driven Security: EMC/RSA Acquires Silver Tail

posted by Scott Crawford | October 30, 2012 | 0 Comments

silvertail_logo

This morning, EMC’s RSA Security Division announced its intent to acquire Silver Tail Systems. The press release is here. I’ve written about Silver Tail before, going back to one of my first posts on the rise of data-driven security. In a five-part blog series introduced by that post, I described how data-driven security is evolving...

Posted in IT Management, Scott Crawford, Security Tags: Big data, EMC, EMC Corporation, RSA, Security Information and Event Management, Security Operations Center, Silver Tail, Silver Tail Systems

RSA Describes Breach Attack (and the Problem with APT)

posted by Scott Crawford | April 4, 2011 | 0 Comments

Catching up after a long weekend spent (mostly) offline, and digesting RSA’s Friday disclosure regarding its recent breach. In the plus column for RSA: At least they made an effort to communicate some detail, albeit late, and at no small risk to their reputation no matter how their statement would be received. They were reasonably forthcoming...

Posted in IT Management, Scott Crawford, Security Tags: Data-Driven Security, EMC Corporation, RSA, RSA Breach, SecurID

RSA SecurID Breach: The Arguments For-and Against-Soonest Disclosure

posted by Scott Crawford | March 23, 2011 | 0 Comments

This morning, friend shrdlu pointed out that RSA might indeed have entirely legitimate reasons for being so deliberate in avoiding a rush to disclose information about the breach of SecurID information: Guys, unless you’ve dealt with this from the executive seat before, you don’t know the other issues. She has a point. Like her, I...

Posted in Scott Crawford Tags: RSA, SecurID

RSA SecurID Breach Update: (Some) Additional Info Provided to Customers

posted by Scott Crawford | March 22, 2011 | 0 Comments

A short while ago, RSA released an additional customer advisory (customer login required) regarding the breach of SecurID information disclosed last Thursday. In my updated initial take on the breach, I noted that: To date, RSA has disclosed no detail about exactly what was compromised or how, leaving customers with no actionable information regarding their...

Posted in Scott Crawford Tags: RSA, SecurID, security

RSA Breach of SecurID Information: Initial Take

posted by Scott Crawford | March 18, 2011 | 0 Comments

(Updated: Commentary on RSA’s disclosure and SecurCare advisory of March 17) Yesterday, RSA Security disclosed that it had been the victim of a security breach that, according to Executive Chairman Art Coviello’s open letter to customers, resulted in the exposure of information “specifically related to RSA’s SecurID two-factor authentication products.” Coviello’s letter goes on to state that “[w]hile...

Posted in Featured Tags: RSA, SecurID

RSA, IBM Watson, and the Future of “Smart” Security

posted by Scott Crawford | February 23, 2011 | 0 Comments

watson_avatar-300x190

First of all, let me get one agenda item out of the way: What I expected to see at RSA this past week, I saw. Sadly, there wasn’t too much in the way of news – but I did see a few things that, perhaps paradoxically, relate to last week’s other high-visibility story in the...

Posted in Scott Crawford Tags: Artificial intelligence, HTML, IBM, RSA, Watson