Video Screencast Help
Search Video Help Close Back
to help

Security Community Blog

Showing posts tagged with Data Loss Prevention (Vontu)
Showing posts in English
Accuracy and DLP Revisited
Kevin Rowney | 02 Mar 2009 | 0 comments


There’s been a recent run of blog postings  here and here reinforcing the fundamental importance of detection accuracy in DLP.  We fundamentally agree.  Starting in 2001, and over the course of the past seven years, many of the defining characteristics of what is now considered Data Loss Prevention were brought to the market by the DLP division of Symantec (once known as Vontu).   New breakthroughs in detection accuracy were among these category-defining innovations that in fact made big swaths of the DLP space viable.

 

Delivering DLP Solutions Looks a Lot Easier Than it is

As Heather Schneider (of RSA) indicates in her post on...

Read more
Symantec DLP Week in Korea
Kevin Rowney | 02 Mar 2009 | 0 comments

On Friday I returned from a visit to the Symantec offices in Seoul, South Korea where we held a kick-off "DLP week".  I spoke with many customers and partners and gave a few interviews to the local press.  It’s interesting to see, once again, familiar patterns of market development in Korea that seem to echo what happened in the U.S. DLP market.  There’s a consistent pattern around public data breach awareness and Korea’s market looks pretty far down this path.


Seoul Was Really Interesting


Before I geek out over DLP, a quick note about my time in Seoul.


Hanging out with the Seoul team was both fun and productive.  They work hard, play hard, love good food, good drinks (gombei!), plus are generous hosts to boot.  The Symantec Seoul team was all that and more.  Thanks Patrick, Gin  and team for your hospitality!


I was also impressed with the extreme driving steelo...

Read more
The Causes of Data Breach
Kevin Rowney | 02 Mar 2009 | 0 comments

The Verizon 2008 Data Breach Investigation Supplemental Report just came out and the results shed new light on the real causes of data breach.  It's difficult to get hard evidence on what's behind the high and rising breach rates globally so when new substantial in-depth analysis comes out, I pay careful attention.

In past posts, I talked about methodological problems with other survey methods and tried to resolve the inconsistencies between what is publicly reported and what we (the DLP Division of Symantec) see on enterprise networks.


In short, I believe this report contains evidence backing the case that many data breach risks are in fact preventable conditions using DLP.  Since this very tightly aligns with our (substantial) anecdotal evidence from the field, it's pretty exciting to see confirmation of these same trends from a third party.

...
Read more
"New School" Thinking and DLP: Part 2
Kevin Rowney | 02 Mar 2009 | 0 comments

Last time, we talked a bit about the "New School" mode of thinking and dug into some of the publicly available numbers on data breaches. I mentioned two sources of security data and in this next post, I'll dig into the second source: DLP Risk Assessment data.


First, an open admission that (for obvious reasons of confidentiality) we simply cannot publish this data in detail; however, a summary of what we see will clearly make my point. Having said that, let's dive into why we have a very different perspective on the natures and causes of data breach.


We've conducted several hundred live on site engagements using highly accurate content-aware DLP systems to identify actual events of data exposure. This body of data should be of interest to practitioners since we don't miss a lot of exposure events. Publicly reported breach stats appear to have a serious problem with false negatives, and looking more deeply at what really happens on...

Read more
"New School" Thinking and DLP: Part 1
Kevin Rowney | 02 Mar 2009 | 0 comments

Back in March, "The New School of Information Security" by Adam Shostack and Andrew Stewart came out trailed by a flurry of largely positive reviews by InfoSec bloggers. I found it compelling reading the first time and gave it a fresh run through recently. A concise summary of TNOIS would be that if Shostack and Stewart showed up at a rally, their banner would read: "Use hard data to guide how you react!"


How can any security practitioner disagree with that?


In this next couple of posts I'd like to use some "New School" thinking on the subject of Data Loss Prevention and analyze two interesting data sources to find new meaning and new ways to manage InfoSec risk. The first of these data sources (and the most obvious place to look) is the well-known...

Read more
Why I am so Positive About DLP
Kevin Rowney | 02 Mar 2009 | 2 comments

Welcome to the Symantec DLP Blog. In my inaugural post, I'd like to share with you my basic sense of optimism in where Data Loss Prevention is going. If you already know me, or have heard me present, you already know my confidence in DLP is now high and rising.

 

From what I see in the field, the magnitude of impact DLP will make in Information Security is hard to over-estimate. In my conversations with CISOs, security practitioners, and other entrepreneurs; there are numerous signs that Data Loss Prevention has finally arrived. Not all of these signs are clearly visible to people working outside of DLP; but they are definitely here. In the months ahead in this forum, expect to see many reasons why you should be paying close attention to this interesting corner of the Information Security space.

 

My high level of optimism may be hard for some members of the security community to understand. There's a lot of cynicism in the security business and, just by...

Read more
Data Hygene
Don_on_data | 02 Mar 2009 | 0 comments

I’m dying to get into the meat of Security 2.0 but before I go there I think we need to talk about how the foundation of good IT management links to Security 2.0, or what I will call good Data Hygiene.

The reason that this discussion is relevant to Security 2.0 is that without this foundation we cannot completely solve the data leakage problem, this notion will become clear as we march through the dialog.
<font style="font-style: italic;">
Note: Data leakage is the current buzz name for data that leaves the enterprise in an unmanaged manner.</font>

So I am resisting the urge to talk about the elements of Security 2.0 until we do some house cleaning.
<hr>
Some might suggest that Security 2.0 is different than security as we have known it to date. Stop it! Security 2.0 is advancement not a replacement. So let’s talk about the infrastructure elements of Security 2.0.

Three dimensions of hygiene come to...

Read more