- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
American businesses aren’t necessarily buying into the Jericho Forum’s urging to rely less on hardened perimeter security -- firewalls and intrusion detection -- in favor of tougher internal security.
The forum, which is made up of CSOs from some of the largest international corporations, says it sees growing adoption of its once-radical idea that businesses should reduce dependence on firewalls as a way to defend against Internet threats. Nearly half -- 45% -- of those polled by the forum say they are implementing network security that complies with forum recommendations.
Forty-eighty percent say they agree strongly that such a security realignment actually improves their companies’ ability to do business, according to a survey of forum members. About half the members responded to the survey, 64% European and 29% American.
The forum meets Monday in New York, in part to prod U.S. businesses to alter their security architectures in order to defend against deperimeterization, the opening up of corporate networks to let in business partners, contractors, customers and guests.
“The Jericho Forum felt we needed to make a big push to get the message out to our American colleagues,” says Paul Simmonds, a Jericho Forum board member and the global information security director at ICI, a U.K.-based paint and chemical manufacturer. “America isn't up to speed. Absolutely.”
The forum’s keynote address, “40 Years of Internet Security and the Future for Firewalls,” is being delivered by Bill Cheswick, lead member of technical staff at AT&T Research.
The forum’s view of firewalls is that they no longer meet the needs of businesses that increasingly need to let in traffic to do business. Its deperimeterization thrust calls for using secure applications and firewall protections closer to user devices and servers.
But even some of the speakers at the Jericho Forum conference advise moderation. “Deperimterization is never going to be all or nothing,” says Daniel Blum, an analyst with the Burton Group, who is speaking at the conference.
Blum acknowledges that relying on perimeter security too much creates insecurity, but says firewalls and the traditional perimeter will still have a place. “It shouldn’t mean throwing away the perimeter, but it also shouldn’t mean they’re all-knowing and all effective. You have to have a sense of depth,” he says. "Enterprises must shift controls to the endpoints, data center repositories and applications."
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (1)
RE: Jericho Forum: U.S. network execs clinging to firewallsBy Rob Hughes on October 5, 2007, 12:59 pmThese guys are just as wrong as the geniuses that claim all you need is a firewall at the perimeter. Neither approach is correct (securing only the endpoint or securing...
Reply | Read entire comment
View all comments