The Security Assurance Ecosystem
Tony Rutkowski, Distiguished Senior Research Fellow in the Center for International Strategy, Technology, and Policy (CISTP), the Sam Nunn School of International Affairs, will provide an overview of the various fora/communities and methodologies that comprise the security assurance ecosystem – often also referred to as the Information Assurance. This ensemble has over the past ten years produced an expanding array of standardized platforms that are being used today to enhance the trust and lower the risks inherent in all computer based networked systems – also referred to as “hardening.” Mantras among these entities include “making security measureable” and “know your weaknesses; know their attacks.” Unrealistic notions of absolute security are becoming transformed into more pragmatic approaches that place the emphasis on risk assessment and automated security systems.
This ecosystem has grown dramatically in scale, activity and globalization over the past several years. The expansions include not only important new platforms such for Continuous Monitoring (CM) and Threat Intelligence Exchange (STIX), but also public mobile infrastructures and services, as these systems and their users become exposed to a rapidly expanding array of exploits.
- Workflow Status: Published
- Created By: Debbie Mobley
- Created: 11/01/2012
- Modified By: Fletcher Moore
- Modified: 10/07/2016