Story image

Myths and truths about internet security

21 Oct 15

The reason so many people are being hacked at such a relentless pace is less about the users themselves and more about mainstream security perceptions and solutions, according to a new book titled ‘Quiet Enjoyment’ by Wes Kussmaul.

Kussmaul says, fraud and predation pervade everyday online experiences, with identities and money stolen at an alarming rate.

People are becoming more dependent of the internet and more wary of the risks it presents, and all the while the information security specialists are failing to provide adequate solutions, he says.

To describe the changing nature of threats, common perceptions and the security industry’s response to the problem, Kussmaul uses the term ‘the information highway’.

“Though the term has gone out of fashion, the information highway continues to live up to its name. The internet and phone networks are, as always, outdoor public transport facilities,” he says.

According to Kussmaul, "It's as though we're living and working in a cardboard box by the side of the street.

“As long as people keep their files, hold their meetings, and let their kids hang out alongside a busy highway, the disaster will get worse."

He goes on to note that the problem is not a broken internet; the information highway serves well as an outdoor public transport system.

Rather, the problem is with the way people use the internet - completing tasks on the outdoor public transport system that should be done in indoor spaces.

"Almost all existing information security technology depends upon the ability to determine the intentions and character of the sender of a stream of bits.

"Isn't that like asking a building's lobby receptionist to determine the intentions and character of everyone who walks through the door? Doesn't your common sense tell you that's impossible?

“Instead, in the real world, the receptionist asks for ID, establishing who's accountable for what happens while the visitor is in the building.

“That's much more effective than trying to guess whether they're friend or foe,” he says.

As the fault is not with the highway, neither is it with us users of the highway, according to Kussmaul.

“We do things on the outdoor highway for the simple reason that online buildings don't exist.

“Yet the technology and methods for building online indoor spaces are quite established and have proven reliable. We can have secure online buildings,” he says.

In his book, Kussmaul explains how secure online spaces can be created and maintained by combining the methods and procedures of the real estate professions with proven but widely overlooked digital ‘ID-PKI’ construction materials.

Such ‘online indoor spaces’ or ‘online buildings’ let users control the use of information about themselves, delivering meaningful privacy.

Often, marketers and others give lip service to privacy but in reality are threatened by tools that deliver meaningful privacy, he says.

SonicWall secures hybrid clouds by simplifying firewall deployment
Once new products are brought online in remote locations, administrators can manage local and distributed networks.
What MSPs can learn from Datto’s Channel Ransomware Report
While there have been less high profile attacks making the headlines, the frequency of attacks is, in fact, increasing.
Cisco expands security capabilities of SD­-WAN portfolio
Until now, SD-­WAN solutions have forced IT to choose between application experience or security.
AlgoSec delivers native security management for Azure Firewall
AlgoSec’s new solution will allow a central management capability for Azure Firewall, Microsoft's new cloud-native firewall-as-a-service.
Kiwis losing $24.7mil to scam calls every year
The losses are almost five times higher compared to the same period last year, from reported losses alone.
How to configure your firewall for maximum effectiveness
ManageEngine offers some firewall best practices that can help security admins handle the conundrum of speed vs security.
Exclusive: Why Australian enterprises are prime targets for malware attacks
"Only 14% of Australian organisations are continuously training employees to spot cyber attacks."
Exclusive: Why botnets will swarm IoT devices
“What if these nodes were able to make autonomous decisions with minimal supervision, use their collective intelligence to solve problems?”