Seven Secrets of the Security Industry

The security industry is hiding seven important things that can undermine the safety of business networks, according to one security expert at IBM. Do you know what those secrets are?

In an article on the Network World website, Tim Greene says Joshua Corman, principal security strategist for IBM/ISS, gave a talk about the misconceptions and half-truths surrounding the security industry at last week’s Interop Las Vegas Show.

“It’s best to have a healthy level of skepticism about what security vendors are trying to tell you,” Corman told attendees. “The goal of the security vendor is not to secure, it's to make money.”

His seven secrets include:

1. Antivirus certifications are misleading.
2. There is no perimeter.
3. Risk analysis threatens vendors.
4. There is more to risk than just weak software.
5. Compliance threatens security.
6. Vendor blind spots allowed the Storm worm outbreak to happen.
7. Security has grown well past do-it-yourself.