A Consumer Reports model could be what finally forces companies to better protect our data

A Consumer Reports model could be what finally forces companies to better protect our data

A Consumer Reports model could be what finally forces companies to better protect our data

The numbers are depressing. An estimated 700 million data records were stolen in 2015. But despite the billions spent on computer security, flaws that allow such attacks are fixed slowly. A June report found that financial companies, for example, take on average over five months to fix known online security vulnerabilities.

“The security industry gets $75 billion every year to try to secure things, and what you get for that is everybody is hacked all the time,” said Jeremiah Grossman, chief of security strategy at SentinelOne, speaking at the Black Hat security conference in Las Vegas on Wednesday.

Yet Grossman and some other veterans of the security industry have lately become more optimistic. They see a chance that companies will soon have much stronger financial incentives to invest in securing and maintaining software.

A new nonprofit called the Cyber Independent Testing Laboratory (CITL) has developed ways to score and compare the security of software products such as Web browsers and operating systems. The aim is to help consumers and companies choose the most secure products, and to shame those putting our data at risk into doing better.

Read Also:
Hadoop: The New Data Warehouse

That effort comes at a time insurance companies have begun to take an interest in understanding the risks for security breaches, something that could create new financial incentives for companies to pay attention to security. Insurers could pressure companies in a similar way to the industry’s role in advancing auto and electrical safety. PwC reported last year that companies are being forced to rely more heavily on cyber insurance because the costs of corporate data breaches are growing fast.

CITL was established by high-profile hacker Peiter Zatko, also known as Mudge, and his wife, Sarah, who is also a security researcher. The pair presented their first results at the Black Hat conference Wednesday, showing how analysis methods they had developed can assign a range of security scores to different software programs.

CITL is modeled on Consumer Reports, and will publish scores aimed at non-experts as well as more detailed assessments for industry insiders.

 

Read Also:
5 Tips For Enterprises To Innovate Like Startups


Chief Analytics Officer Europe

25
Apr
2017
Chief Analytics Officer Europe

15% off with code 7WDCAO17

Read Also:
5 Tips For Enterprises To Innovate Like Startups

Chief Analytics Officer Spring 2017

2
May
2017
Chief Analytics Officer Spring 2017

15% off with code MP15

Read Also:
The Growth of Business Intelligence in 2017

Big Data and Analytics for Healthcare Philadelphia

17
May
2017
Big Data and Analytics for Healthcare Philadelphia

$200 off with code DATA200

Read Also:
Using a Data Governance Playbook to Drive Data Steward Maturity

SMX London

23
May
2017
SMX London

10% off with code 7WDATASMX

Read Also:
It Seems Like Anyone Can Be a Data Scientist... but Is It True?

Data Science Congress 2017

5
Jun
2017
Data Science Congress 2017

20% off with code 7wdata_DSC2017

Read Also:
Is It Time To Expand Your Data Analytics Team?

Leave a Reply

Your email address will not be published. Required fields are marked *