InformationWeek – Security > “Just as two hackers talk to each other and come up with a threat, CIOs need to come together and collaborate with each other on mechanisms to fight these threats”

Welcome Guest | |

Home
Global CIO 2010
Case Studies
Special Features
Interviews
Top News
Section
Vertical
- BFSI
- IT/ITES
- Government
- FMCG
- Telecom
- Manufacturing
- Pharma
- Services
Special Property
Editor Zone
Analytics & Reports
International News

| | | | | | | | | | |

Security

“Just as two hackers talk to each other and come up with a threat, CIOs need to come together and collaborate with each other on mechanisms to fight these threats”
The online threat landscape has changed steadily over the years, with threats growing not only in number but also in terms of their complexity and variety. In this changing scenario, are existing standards still good enough for ensuring security? How do authentication methods such as one-time password generators and digital signature generators fare? To find out, Harshal Kallyanpur, spoke with SSL inventor, Dr Taher Elgamal, who is also an advisor for Arcot Systems. July 07, 2009

For the uninitiated, Dr Elgamal invented the Elgamal signature scheme which became the basis for Digital Signature Algorithm (DSA) adopted by the National Institute of Standards and Technology (NIST) as the Digital Signature Standard (DSS).

Some excerpts from the interview:

In the current online threat scenario does SSL still offer a high level of security? Also how has the threat scenario changed over the years?
The design of SSL only allows it to secure the pipe. Will use of SSL to protect everything online work? The answer is “No”. Though there have been advancements such as changes in key sizes and mechanisms such as MDS cipher to improve encryption, SSL was designed to protect only a certain part of the online transaction and can only do so.

If you look at the way threats to digital information have evolved, the highest level of threat felt 15 years ago was from insiders who knew how the system works and could thus exploit it to extract sensitive information. With the evolution of the Internet, the threat from outsiders increased multifold. Initially attackers were young programmers who targeted systems to steal passwords or other information, or broke into the system to display their skills or to create a certain level of attack.

This has now transformed into organized crime wherein individuals with such skills are attacking as a group or are hired by other criminals, stealing information and even identities. Today two hackers talk to each other and come up with a threat. CIOs, especially those of financial institutions, need to come together and collaborate with each other on mechanisms to fight these threats.

blog comments powered by Disqus

Top Stories

Webcast (On Demand)

"The Social Organization"
Attend Webcast on "The Social Organization" presented by Mark McDonald, Ph.D. Group Vice President, Gartner Fellow, Gartner Executive Programs - He discusses the approaches necessary to bring social media technology together with people to create mass collaboration and transform the way you work. This webcast discusses why it’s important to become a social organization rather than just having social media. Attend this webcast on Demand

Interview

CIOs must leverage social media to increase their presence in the boardroom
Arun Sundararajan, NEC Faculty Fellow and Associate Professor at New York University’s Stern School of Business, discusses with InformationWeek the relevance of social media to the overall business, and how CIOs must handle social media

BankTech India - IT News for BFSI Segment

We're on Google+

InformationWeek India on Facebook