« Sourcefire IPO - Like Rain in the Desert... | Main | Getting "defensive" about security strategy? »

November 03, 2006

Defending the Self-Defending Network

Firewall_breach_jpg I recently gave a session presentation at TechTarget's Information Security Decisions show in Chicago.  The topic of my presentation was "Defending the Self-Defending Network with Virtualized Enterprise UTM."  They're actually making a roaming seminar series out of it.

Must have been the shirts and iPods I gave away?

What's the presentation summary?  Simple.  "Embedded" network security as proposed by Cisco is a pipe dream.  In fact, it's nothing more than the aging appliance model with boxes NOT embedded into the routers and switches at all; they're just a single vendor's appliances disguised as "security enablers."

The "Self-Defending Network" is a marketecture.  It's not feasbile, unreasonable, fiscally mis-aligned to (and unaware of) the value of the assets it protects and the worst example of risk management modeling; protecting everything, everywhere, all the time is stupid.

You ought to protect the things that matter most with the best defense possible, where needed, when needed and at a cost where the risk justifies the cost.  Box sprinkling security is so last Wednesday.

You should build a stable, resilient, fast and reliable network.  Stir in some basic "embedded" or appliancized security functionality as acceptable and then overlay virtualized best-of-breed security as a service layer.  See the post regarding SSOA (Security Service Oriented Architectures) below for the full picture.

On a more theatric note...

The wonderful marketing mavens who dreamed up the theme for my session chose football.  I grew up in New Zealand.  I know Rugby.  Moreover, what I really wanted to do was to build a theme around the sport I love most, Mixed Maritial Arts -- a'la Ultimate Fighting Championship (UFC.) 

For some reason they thought that using terms such as "Kimora," "Arm bar," "tap-out by submission," and "rear naked choke" would have some sort of negative impact.  I think it's the perfect model for a network security presentation...so did about 30 of the guys who came back to the booth to discuss the recent UFC match between Rich Franklin and "Spider" Silva...Mui Thai clinches and about 5 knees to the head...awesome!

At any rate, you'll appreciate my lame attempts at football analogies then.

Here's a link to the presentation if you're interested.

Chris

Posted at 12:12 AM in Unified Threat Management (UTM) |

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/services/trackback/6a00d83451be3669e200d834611c5d69e2

Listed below are links to weblogs that reference Defending the Self-Defending Network:

» The Daily Incite - November 3, 2006 from Security Incite: Analysis on Information Security
November 3, 2006 - #149 Good Morning: Today Im inspired. People overcome great hardships every day and a lot of other people decide they are going to thrown in the towel and accept the path they are on. Ultimately, those kinds of decisions are [Read More]

Tracked on November 03, 2006 at 09:37 AM

Comments

My Photo

About

Disclaimer

  • The views and opinions expressed here are those of Christofer Hoff only and in no way represent the views, positions or opinions - expressed or implied - of my employer or anyone else.

Archives

More...

Subscribe to this blog's feed

Recent Posts

Recent Comments

Categories

May 2009

Sun Mon Tue Wed Thu Fri Sat
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
31