RSA Security « Scott Crawford

Integration and Intelligence, Part 3: Toward Dynamic Defense

posted by Scott Crawford | May 29, 2013 | 0 Comments

jets

Last week, two vendor announcements were made that, on the surface, appear to be unrelated. Both, however, reflect larger trends that I’ve been following here – and despite appearances to the contrary, they also have some interesting traits in common. On Wednesday, Blue Coat announced its intent to acquire Solera Networks and its deep security...

Security in 2013: The “Productization” of Big Data

posted by Scott Crawford | January 29, 2013 | 0 Comments

data-explosion-iStock_000013253555XSmall

(UPDATE: This week, both IBM and EMC’s RSA Security Division announced new Big Data initiatives in security. More to come on this front…) In my last post, I noted that I expect intelligence and the coordination and integration of defense technologies to be key drivers of the IT security market in 2013. This is not...

Posted in Security Tags: big data, Data-driven security, EMC Corporation, Hadoop, HP, IBM, intelligence, NetWitness, RSA Conference, RSA Security, Security information and event management, SIEM, Splunk

Validating the Rise of Data-Driven Security: EMC/RSA Acquires Silver Tail

posted by Scott Crawford | October 30, 2012 | 0 Comments

silvertail_logo_sq2

This morning, EMC’s RSA Security Division announced its intent to acquire Silver Tail Systems. The press release is here. I’ve written about Silver Tail before, going back to one of my first posts on the rise of data-driven security. In a five-part blog series introduced by that post, I described how data-driven security is evolving...

Posted in Security Tags: big data, Data-driven security, RSA Security, Silver Tail Systems

When Breaches Affect a Lot More than the Victim: How Much Security Is Enough?

posted by Scott Crawford | February 3, 2012 | 0 Comments

Another report of a breach at a technology vendor much of the industry depends upon for security and trust; this time, Verisign. The most immediate concern about this incident was that the attacks in question occurred in 2010, and were not widely known until Reuters discovered the disclosure in the company’s reporting as required to...

Posted in Security Tags: Comodo, data breach, DigiNotar, New School, RSA Security, Symantec, Verisign

EMC/RSA Acquires NetWitness: Data-Driven Security Goes Mainstream

posted by Scott Crawford | April 4, 2011 | 2 Comments

NetWitnessIcon4

No sooner had the ink dried on RSA’s disclosure of the nature of the attack that resulted in its high-profile breach than NetWitness, RSA’s partner in investigating this incident, announced its acquisition by RSA parent EMC. (Given the fact that the deal is already closed, it’s safe to assume that due diligence well preceded this event.)...

Posted in Security Tags: Data-driven security, EMC Corporation, NetWitness, RSA Security

RSA Describes Breach Attack (and the Problem with APT)

posted by Scott Crawford | April 4, 2011 | 0 Comments

Catching up after a long weekend spent (mostly) offline, and digesting RSA’s Friday disclosure regarding its recent breach. In the plus column for RSA: At least they made an effort to communicate some detail, albeit late, and at no small risk to their reputation no matter how their statement would be received. They were reasonably forthcoming...

Posted in Security Tags: APT, RSA breach, RSA Security

RSA SecurID Breach: The Arguments For-and Against-Soonest Disclosure

posted by Scott Crawford | March 23, 2011 | 0 Comments

This morning, friend shrdlu pointed out that RSA might indeed have entirely legitimate reasons for being so deliberate in avoiding a rush to disclose information about the breach of SecurID information: Guys, unless you’ve dealt with this from the executive seat before, you don’t know the other issues. She has a point. Like her, I...

Posted in Security Tags: data breach, EMC Corporation, RSA breach, RSA Security, SecurID

RSA SecurID Breach Update: (Some) Additional Info Provided to Customers

posted by Scott Crawford | March 22, 2011 | 0 Comments

A short while ago, RSA released an additional customer advisory (customer login required) regarding the breach of SecurID information disclosed last Thursday. In my updated initial take on the breach, I noted that: To date, RSA has disclosed no detail about exactly what was compromised or how, leaving customers with no actionable information regarding their...

Posted in Security Tags: data breach, HCIA, RSA breach, RSA Security, SecurID

RSA Breach of SecurID Information: Initial Take

posted by Scott Crawford | March 18, 2011 | 0 Comments

(Updated: Commentary on RSA’s disclosure and SecurCare advisory of March 17) Yesterday, RSA Security disclosed that it had been the victim of a security breach that, according to Executive Chairman Art Coviello’s open letter to customers, resulted in the exposure of information “specifically related to RSA’s SecurID two-factor authentication products.” Coviello’s letter goes on to...

Posted in Security Tags: HCIA, RSA breach, RSA Security, SecurID