An adaptive threat-prevention model is quickly replacing traditional, unintegrated architectures as security teams work to achieve a sustainable advantage against complex threats.
I was recently invited to discuss context-rich and context-aware security solutions with a group at the Department of Defense. I wanted to be crystal clear, so I started with the definition from the Gartner IT Glossary:
Context-aware security is the use of supplemental information to improve security decisions at the time they are made, resulting in more accurate security decisions capable of supporting dynamic business and IT environments.
The most commonly cited context information types are environmental (such as location and time). However, context information valuable to information security exists throughout the IT stack, including IP, device, URL, and application reputation; business value context; and the threat context in which the decision is made. For the full article click here
from cyber security caucus http://ift.tt/29SjNxi
via IFTTT
No comments:
Post a Comment