news from RSA 2014
Richard Clarke, member of the President's Review Group on Intelligence and Communications Technologies, yesterday addressed the Cloud Security Alliance Summit at RSA. He described "policy failures" and their consequences, drawing particular attention to what he characterized as disconnects between policy-makers and operators. One of the consequences he discussed were the headwinds security fears have imposed on US IT exports. In some respects little more than a new form of familiar FUD, such concerns have given rise to ultimately futile and wasteful gestures toward national cyber autarchy. These have as little prospect of success as earlier autarchic programs in other sectors. Clarke called for greater transparency in intelligence policy (internationally as well as in the US) and strongly advocated encryption of data "in transit, at rest, and in use." (Compare Clarke's remarks with the White House's just announced consultations on privacy and technology with MIT.)
The Innovation Sandbox results were announced yesterday, and congratulations go to the overall winner, Baltimore's own RedOwl Analytics, the pride of Light Street and leader in enterprise situational awareness. The other finalists deserve honorable mention (and your attention) as well: White Ops (bot detection), Bluebox Security (enterprise mobile security), Cylance (advanced malware identification), Co3 Systems (incident response automation), ThreatStream Inc. (collaborative threat intelligence), Skycure (mobile security), Defense.Net (DDoS mitigation), Light Cyber (predictive breach detection), and Cyphort (detection and analysis of next-generation threats).