Mitre, the vendor neutral IT think tank, is the trusted advisor to many government agencies. Mitre fellows are expert on cybercrime, compliance solutions, threat detection and enterprise security management systems. In a recent paper they make recommendations for fighting cybercrime.
We've included a few of them here - our own security gurus give this paper 5 stars! Our customers in the federal government trust Mitre for unbiased, deep thinking about security and so do we. Here's just a sample of the strategies you can read about in this paper.
Mitre suggests creating 'Survivable Software' which creates variants of the original applications code, making it more difficult for an attack to be written. They describe Secure Converged Computing - something similar to a virtualized environment except that the OS image is essentialy built and erased as needed, so there's no chance of a user having a long term OS that can collect malicious software.
Another interesting suggestion is creating a RiskMAP - this means that you would identify the points within an application or business process where the applications are at risk, depending on where the process/application is accessed by the network.
One other idea they call 'Mission Resilience through Availability' - this tactic restricts what an intruder would have access to, if they were in fact successful in penetrating the trusted network.
Check out this paper by Mitre and consider reading 9 Ways to Stop Data Loss and Reduce the Risk of Insider Threats. Let us know what you think about these resources and share some ideas of your own here.
We've included a few of them here - our own security gurus give this paper 5 stars! Our customers in the federal government trust Mitre for unbiased, deep thinking about security and so do we. Here's just a sample of the strategies you can read about in this paper.
Mitre suggests creating 'Survivable Software' which creates variants of the original applications code, making it more difficult for an attack to be written. They describe Secure Converged Computing - something similar to a virtualized environment except that the OS image is essentialy built and erased as needed, so there's no chance of a user having a long term OS that can collect malicious software.
Another interesting suggestion is creating a RiskMAP - this means that you would identify the points within an application or business process where the applications are at risk, depending on where the process/application is accessed by the network.
One other idea they call 'Mission Resilience through Availability' - this tactic restricts what an intruder would have access to, if they were in fact successful in penetrating the trusted network.
Check out this paper by Mitre and consider reading 9 Ways to Stop Data Loss and Reduce the Risk of Insider Threats. Let us know what you think about these resources and share some ideas of your own here.
Powered by Compendium Blogware
Comments for Mitre Weighs in Fighting Cybercrime