What are the most serious computer security threats that loom in the near future?
-
Web security (XSS, CSRF, SQL Injection)? Mobile security? Systems security?
-
Answer:
The most serious security threats to an organization is the organization itself. Social protocols. Not technological. After having an engineer we hired spill some of our secret sauce to a woman he met at a restaurant (who relentlessly flirted with him), I know full well the dangers of not having social protocols in place. That woman turned out to be a friend of a founder at a competing start up. Of course her excuse was "oh the NYC start up scene is a small world!". Coincidence? I think not. He even let her use his work laptop to check her Facebook! I doubt she was only checking her facebook, especially at the next tech conference, the competitor suspiciously sported similar ideas as we did, almost down to the exact specifications for our new prototype. In other words, the biggest threats will eventually stop being SQL injections, XSS, etc... as developers get their wake up calls and patch up their code. But the biggest threats to an organization will be the organization itself. To be really secure, organizations will need to secure BOTH the technology side AND the social side (social protocols for employees to follow, restricting physical access to server rooms, etc...).
Peter Johnson at Quora Visit the source
Other answers
The fact that we still don't have Capability based Security is by far the biggest security hole, bar none. Trusting application code is just plain nuts, in my opinion. As Ciaran says, this stuff has been around since the 1970s. I think we took a big WRONG TURN when everyone decided that Unix was good enough in terms of security. Its only when Capability architectures are installed on most systems that we can finally get security back under control.
Mike Warot
As someone who works in SCADA and ICS security, I see the following: Critical infrastructure such as the power grid and water - sorry North America, but you are really not on top of things PLCs, RTUs etc... their manufacturers don't care about security because the customers don't want to pay for it Computer engineering/science and control systems/process/electrical engineers need to get off their high horses and realize that they are joined at the hip - especially since they decided with the invention of TCP/IP to network all of their vulnerable serial protocols... Public Key Infrastructure (PKI) - I'm sorry, but key storage and distribution is still an unsolved challenge. This actually a huge flaw in current computing to me - for example, you use public/private keys for communication... thats nice... they are in memory and you are relying in APIs, libraries etc... to use and zero that memory immediately after. Python and high-level programmers that only write content for the web; there will be alot of holes in the layers below with noone to fix them. Sandboxing and shoving everything into chroots and VMs shouldn't be the entire fix. Antiquated versions of software - including mobile devices... rarely any manufacturer performs updates on their OEM software/drivers. Proprietary network protocols and hardware - start using reference and widely adopted standards so its easier to make changes instead of piece mealing it all together (my opinion, but I like opensource) Corporate security of all of that information that they have mined on us....
Ron Brash
Related Q & A:
- What are some good serious plays where I could find a monologue?Best solution by Yahoo! Answers
- What is the material on computer covers when you buy a computer?Best solution by protectcovers.com
- What's the deal with the security certificate?Best solution by Yahoo! Answers
- What is the difference between computer science and computer programming?Best solution by wiki.answers.com
- Who of the royals will have a child in near future?Best solution by Yahoo! Answers
Just Added Q & A:
- How many active mobile subscribers are there in China?Best solution by Quora
- How to find the right vacation?Best solution by bookit.com
- How To Make Your Own Primer?Best solution by thekrazycouponlady.com
- How do you get the domain & range?Best solution by ChaCha
- How do you open pop up blockers?Best solution by Yahoo! Answers
For every problem there is a solution! Proved by Solucija.
-
Got an issue and looking for advice?
-
Ask Solucija to search every corner of the Web for help.
-
Get workable solutions and helpful tips in a moment.
Just ask Solucija about an issue you face and immediately get a list of ready solutions, answers and tips from other Internet users. We always provide the most suitable and complete answer to your question at the top, along with a few good alternatives below.