Welcome!

Government Cloud Authors: Pat Romanski, Elizabeth White, Liz McMillan, Dana Gardner, Gopala Krishna Behara

Related Topics: Cloud Security, Microservices Expo, Government Cloud

Cloud Security: Blog Feed Post

In Search of a Russian Winter of Information Systems Security

To many cyber security experts, the Maginot Line represents the wrong approach to security

Bob Gourley recently wrote about the dangers of a Maginot Line approach to network security in “The Maginot Line of Information Systems Security“, based on of the paper by Dr. Rick Forno. In the Second World War, the French relied on the Maginot Line, a string of fortifications along the German border, to repel invaders. Feeling secure behind fortified walls, they missed the developments in technology and tactics that allowed the Germans to simply bypass the Line to be well within France in just 5 days.

To many cyber security experts, the Maginot Line represents the wrong approach to security. Dr. Forno originally compared it to buying the latest and greatest software then forgetting about it, pointing out how even the “best” solutions can have hundreds of flaws and exploits, some only becoming evident after attacks. No single solution, or even combination of technical solutions, can be perfect: “Good firewalls and other purely technical solutions do their work effectively, but to a clever and determined attacker they are just obstacles to be either broken or side-slipped, whichever is most effective. ” Despite a consensus that a Maginot Line fails just as spectacularly in cyberspace as in the battlespace, a press release every few months decrying a Maginot Line approach means that we have not yet moved on fully.

What we need, then, is a Russian winter of information systems security. Throughout history, the Russian winter has been a nightmare for every invading army that tried to brave it, including the legendary Napoleonic and Nazi war machines. These were the “advanced persistent threats” of their day. While the Maginot Line was easily avoided because it couldn’t adjust or adapt, the Russian winter punished the Germans on the Eastern front. That’s because not only was the cold and the harsh weather pervasive, it gave the advantage to the defenders while allowing for human ingenuity, allowing Soviet tactics to shift and evolve with the threat. Of course, the Russian winter was just winter to the Russians, who were more accustomed and prepared for their climate than invaders.

Russian ski troops in WWII via The Chicago Tribune archive

One company working to provide a Russian winter style defense is CloudShield. Their latest product, the CS-4000, is a next generation trusted network security platform designed to protect the most critical infrastructure and most private information of our military and intelligence community. As a technical system, the CS-4000 is cutting edge, like the rest of Cloudshield’s offerings, providing deep packet inspection for mixed-traffic converged networks for total visibility and access to every byte and every bit. Like Russia’s legendary winters, Cloudshield defends from all angles, even kinetic attacks by hardening their hardware with physical security countermeasures. Unlike the Russian winter, however, CloudShield’s solutions don’t complicate IT for everyone. It’s only a Russian winter for the bad guys, while the good guys enjoy a Hawaiian spring.

What really seperated Cloudshield’s offerings, such as the CS-4000, from Maginot Line style cyber defenses is its unprecedented agility. Cloudshield provids the first open, programmable network platform, which is scalable, adapts to new policies seamlessly, and  offers not only the widest range of deployed applications but also makes developing new applications cheap, fast, and easy with their PacketWorks Integrated Development Environment and CloudShield PacketWorks Operating System.

Like the Maginot Line, many security platforms offer a static set of defenses and rely on technical solutions which, as Dr. Forno warned, invite hackers to innovate and work around them. CloudShield’s technology, like the Russian winter,  offers a flexible, active defense that can be adapted and optimized by a clever security team to adjust instantly to new threats. CloudShield’s network platforms represent an evolving paradigm in cyber securityand risk management solutions that, like Russia’s biting winds and deep snows, provide a powerful deterent and, when combined with a capable defense, become nearly impenetrable.

Read the original blog entry...

More Stories By Bob Gourley

Bob Gourley writes on enterprise IT. He is a founder of Crucial Point and publisher of CTOvision.com

IoT & Smart Cities Stories
The platform combines the strengths of Singtel's extensive, intelligent network capabilities with Microsoft's cloud expertise to create a unique solution that sets new standards for IoT applications," said Mr Diomedes Kastanis, Head of IoT at Singtel. "Our solution provides speed, transparency and flexibility, paving the way for a more pervasive use of IoT to accelerate enterprises' digitalisation efforts. AI-powered intelligent connectivity over Microsoft Azure will be the fastest connected pat...
There are many examples of disruption in consumer space – Uber disrupting the cab industry, Airbnb disrupting the hospitality industry and so on; but have you wondered who is disrupting support and operations? AISERA helps make businesses and customers successful by offering consumer-like user experience for support and operations. We have built the world’s first AI-driven IT / HR / Cloud / Customer Support and Operations solution.
Codete accelerates their clients growth through technological expertise and experience. Codite team works with organizations to meet the challenges that digitalization presents. Their clients include digital start-ups as well as established enterprises in the IT industry. To stay competitive in a highly innovative IT industry, strong R&D departments and bold spin-off initiatives is a must. Codete Data Science and Software Architects teams help corporate clients to stay up to date with the mod...
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throug...
Druva is the global leader in Cloud Data Protection and Management, delivering the industry's first data management-as-a-service solution that aggregates data from endpoints, servers and cloud applications and leverages the public cloud to offer a single pane of glass to enable data protection, governance and intelligence-dramatically increasing the availability and visibility of business critical information, while reducing the risk, cost and complexity of managing and protecting it. Druva's...
BMC has unmatched experience in IT management, supporting 92 of the Forbes Global 100, and earning recognition as an ITSM Gartner Magic Quadrant Leader for five years running. Our solutions offer speed, agility, and efficiency to tackle business challenges in the areas of service management, automation, operations, and the mainframe.
The Jevons Paradox suggests that when technological advances increase efficiency of a resource, it results in an overall increase in consumption. Writing on the increased use of coal as a result of technological improvements, 19th-century economist William Stanley Jevons found that these improvements led to the development of new ways to utilize coal. In his session at 19th Cloud Expo, Mark Thiele, Chief Strategy Officer for Apcera, compared the Jevons Paradox to modern-day enterprise IT, examin...
With 10 simultaneous tracks, keynotes, general sessions and targeted breakout classes, @CloudEXPO and DXWorldEXPO are two of the most important technology events of the year. Since its launch over eight years ago, @CloudEXPO and DXWorldEXPO have presented a rock star faculty as well as showcased hundreds of sponsors and exhibitors! In this blog post, we provide 7 tips on how, as part of our world-class faculty, you can deliver one of the most popular sessions at our events. But before reading...
DSR is a supplier of project management, consultancy services and IT solutions that increase effectiveness of a company's operations in the production sector. The company combines in-depth knowledge of international companies with expert knowledge utilising IT tools that support manufacturing and distribution processes. DSR ensures optimization and integration of internal processes which is necessary for companies to grow rapidly. The rapid growth is possible thanks, to specialized services an...
At CloudEXPO Silicon Valley, June 24-26, 2019, Digital Transformation (DX) is a major focus with expanded DevOpsSUMMIT and FinTechEXPO programs within the DXWorldEXPO agenda. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throug...