Entries categorized under “Security”

In the last few years security has shifted from being an issue that organizations only deal with when a crisis occurs to one with which they must now daily confront. This is putting pressure on organizations to stop taking a knee jerk reaction as their means of ongoing security management and instead adopt a systematic approach to effectively deal with both external and internal threats. The problems that internal threats present and why they are so difficult to detect were openly discussed this past Wednesday morning during that morning's keynote at Symantec Vision 2013. (read more)

Information Technology Divisions (I.T.) traditionally does not deal with securing a device that has not been issued and controlled by them. Bring Your Own Device (BYOD) has exploded across industries. Rapid adoption of iPhone and Android devices displaced Blackberry Enterprise Server (BES) in the mobile enterprise email space. Adoption of new devices drives the need for Mobile Device Data Management software to assert control. (read more)

Encryption's value is no longer in question in large enterprises. Rather the broader challenge they face as they look to manage petabytes of data in complex backup environment is, "How to overcome the substantial costs and time required to manage encryption keys?" An answer to these concerns is finally at hand in the form of the newly available Key Management Interoperability Protocol (KMIP). (read more)

Today EMC announced the availability of a new online file sharing (often referred to as 'sync and share') solution that is aimed at meeting the needs of enterprises. EMC is the first single vendor to offer a comprehensive, end-to-end solution in the file-sync-and-share marketplace. The new EMC solution provides an enterprise grade file-sync-and-share infrastructure from a single vendor. It combats enterprise data leakage risks while helping organizations realize the advantages of increased productivity and collaboration that sync and share enables. EMC backs the enterprise grade moniker with their professional services and 24x7 global support. The solution combines the simplicity and scalability of Isilon scale-out storage with Syncplicity's sync and share administrative and policy control tools. (read more)

Bring your own device (BYOD) file-sync-and-sharing has exploded in 2012. There are over forty (40) companies offering at least one product to organizations of all sizes. Over half of those companies offer a consumer grade version of their file-sync-and-share. With so many options, CIOs are unable to focus on choosing solutions to enable their organization's workforce while managing data leakage. CIOs can't choose products because the market hasn't been consistently defined. In an effort to define a Buyer's Guide, DCIG is conducting a survey for Mobile Device and Cloud File Sharing. (read more)

In part 2, we continue our discussion with GroupLogic's Anders Lofgren, Vice President of Marketing and Product Management, by exploring licensing options and how the enterprise mobility space has opened up a new market for the company. As well, we dig deeper into activEcho and learn how it is designed to provide flexible and secure file-sync-and-sharing in the enterprise IT organization while being as simple and easy to use as one of the most popular--but unsecure--consumer grade file-sync-and-share cloud services today. (read more)

Corporate data making its way to public clouds through the use of consumer-based or department selected tools, is a growing concern for many organizations. So is the cost of backup and storage of ever-increasing volumes of data. Cleversafe and Mezeo Software offer solutions to address these concerns, and the two companies recently partnered to provide information technology (IT) managers with an enterprise-class secure file-sync-and-share solution combined with a limitless-scale data storage solution. (read more)

As the volume of unstructured data such as files in File Shares or documents in Microsoft SharePoint continues to grow, organizations are faced with managing increased data security and information governance risks. One of the more potentially dangerous risks for organizations in the Microsoft Windows world are open shares or folders that are accessible by poorly defined and managed default global access groups like "Everyone,""Domain Users" and "Authenticated Users." To shut down these potential security and compliance risks, organizations may use Symantec Data Insight in five specific ways to manage the inherent ownership, usage and permissions risks present in today's unstructured data and SharePoint environments. (read more)

Many organizations are discovering that their users, via a proliferation of wireless devices, and easy access to consumer-based storage clouds, are precariously storing corporate data on pubic clouds. Addressing this growing problem, Dell recently certified Mezeo Software, a provider of the storage services layer for cloud-scale applications, as a partner in the Dell DX Object Storage Technology Partner Program. (read more)

Earlier this year, DCIG interviewed the executive team at GroupLogic. GroupLogic shared with us how they approach the market for "enterprise file sharing" or what DCIG has been calling File-Sync-and-Share. In addition, we had the privilege of talking to Chris Broderick, CEO of GroupLogic who covered some of the company's history. (read more)

Organizations choosing file-sync-and-share solutions are presented with many options. Buyers and sellers are inquiring with DCIG about "Enterprise Dropbox" options. A popular request is what to look for when selecting a solution. Enterprises and consumers require enhanced features beyond the ease of use and standard consumer capabilities; they require something that these public cloud solutions cannot deliver - security and control. (read more)

Since the advent of the TCP/IP protocol, network administrators have had a major blind spot: the ability to reliably determine the identity of an individual device or user. BlackRidge's new Eclipse™ solution, built on BlackRidge's patented Transport Access Control (TAC), uses client drivers or gateway appliances to insert unique identity information to every TCP packet. In this third and final post in our blog interview series, BlackRidge Technology CTO John Hayes and I discuss where BlackRidge is heading and the challenge of managing infrastructures from the perspective of devices rather than networks. (read more)

The keynote given by Symantec's CEO Enrique Salem this past Tuesday and the series of presentations that followed exposed every attendee at Symantec Vision 2012 to just how dangerous today's internet world really has become. Yet the larger threat that every business faces is not putting in place a solution to address them. Rather it is the danger that dealing with these threats will cause organizations to take their eyes off of the ball and fail to focus on where their business needs to go next. (read more)

The world of machine-based data collection is creating an entirely new type of security problem: authenticating machines that have no formal user identity associated with them. Traditional VPNs break down in these environments while RSA Key IDs have no answer. (read more)

Followers of my previous blog entries should recognize the next company in DCIG's Executive Interview series. I have previously discussed both the technical and operational impact of BlackRidge Technology's patented breakthrough technology known as Transport Access Control (TAC). Today, BlackRidge announces their first product, Eclipse, based on their TAC technology. I begin a discussion of this release, in the form of a multi-part interview series, with BlackRidge Technology's CTO John Hayes. (read more)

Managed File Transfer (MFT) companies are kicking off 2012 by positioning their products in the enterprise File Synchronization and Share (FSS) market. Their positioning is based on an organic growth and adoption trend of consumer-FSS by small, medium and large enterprises and organizations. (read more)

Amazon announced their Storage Gateway (beta) on January 25th, about two days before my article on VMWare and Citrix squaring off in the "Dropbox for Enteprise" market. In my article I noted that VMWare and Citrix are exploiting a based limitation of Dropbox, Evernote and Box introduced by supporting a Consumerization of IT (CoIT) product. Consumer-based file-share-and-synch applications cannot be installed in a company's data center. As file-share-synch drives cloud adoption in the enterprise, vendors emerge from all corners. (read more)

MetaFlows is a network security monitoring tool implementing some unique capabilities in today's ever-changing security environment. They are allowing security administrators access to not only aggregated threat information for their own network, but are also alerting them to potential global threats in their enterprise spaces. I am finishing up my interview today with MetaFlows CEO Livio Ricciulli, looking at how they are able to aggregate threat information while maintaining security in a cloud-based solution. (read more)

Network security monitoring is a constantly changing environment of both tools and methodologies. Most of them today, however, have used a lone "cowboy" mentality where datacenter solutions operate independently. MetaFlows is changing that. Today, I am continuing my interview with MetaFlows CEO Livio Ricciulli, discussing how their product is optimizing network security monitoring and performance. (read more)

Enterprise organizations face the daily challenge of ever-growing threats to their network and IT infrastructure. Not only are these threats growing, but they are constantly changing as well, forcing companies to adapt by changing not only their tools but also their training. Today, I'm talking with MetaFlows CEO Livio Ricciulli about how MetaFlows is addressing these problems by delivering network security monitoring using the "Software as a Service" model. (read more)

2012 ushers in the Consumerization of IT (CoIT) within the enterprise as the most strategic opportunity in IT infrastructure. CoIT is generally defined as consuming applications and content within your work life the same way you do it in your personal life. For enterprises to deliver equivalent applications they need more than an Enterprise App Store, they require a storage cloud supporting customers, partners and employees. (read more)

The ubiquitous username and password authentication scheme has been with us since the early days of the Internet. Since then, the Internet has grown tremendously in terms of both size and complexity with the threats faced by network devices and applications growing right along with them even though the means used to authenticate users and devices have stayed pretty much the same. To address these shortcomings, BlackRidge Technology introduced a new transparent means of authentication that adds a more robust layer of security while maintaining usability. (read more)

Information managers can expect data storage companies to drive significant campaigns around Big Data as we enter 2012. Storage is the least of anyone's concerns, according to The Economist Intelligence Unit (EIU) report Big Data: Harnessing a game-changing asset. Information Governance in 2012 requires Data Science strategy and practitioners be added to all business teams. (read more)

One of the more exciting products to come out of this year's VMworld 2011 conference was a phone. This "phone" went well beyond the push-button, touch tone variety as it was an LG phone running a beta version of VMWare's mobile hypervisor for Android that creates what we here at DCIG refer to as "vPhones." (read more)

A few weeks ago I posted a blog entry suggesting that network perimeter security had begun to break down with the advent of the cloud and the use of ubiquitous mobile devices to access resources stored in the cloud. The need of these devices to have a secure yet transparent method to access cloud resources has surpassed the ability of current Internet protocols and solutions to provide them. (read more)