Subscribe to CIO Magazine »

Boeing backs metadata for information security

Industries should do more to label digital data says Boeing’s Stephen Whitlock
Boeing backs metadata for information security

Metadata – 'data about data' such as the non-image-related information stored when people snap a photo on a digital camera – should be used to label corporate information according to one US security specialist.

Speaking at The Open Group conference in Sydney, Boeing information security chief strategist Stephen Whitlock told delegates that if more digital data was labelled it would be easier to secure. “What we are talking about is a shift from discretionary access control system to mandatory access control. If you apply metadata to the data and have a set of policies, the system decides the access,” he said.

For example, if an aircraft designer was logged into a CAD system and working on a certain project, by default the system would be able to assign certain rights to that data.

The state of data breaches

Companies still unprepared for cyber attacks: Deloitte

Qantas email scam plays on human vulnerabilities: Qantas

Whitlock showed delegates the type of metadata stored by his camera. This included the owner’s name, the firmware used by the camera, and if the camera had been repaired.

“I like this example because when you press the shutter the camera did all this,” he said. “Most of the applications I use are much smarter than my camera.”

“The industry that has tonnes of money at stake in various verticals ought to care about corporate data as much as a picture someone snaps with an iPhone,” Whitlock said.

He added that data theft was “much easier” than physical crime because it was faster and left little to no trace.

“There is a lot less risk when you are stealing data, especially if you’re doing it over the Internet from one country to another,” he said.

Whitlock said he would like to industries invest in data labelling including rules and protocols.

“Data is now worth more than hardware and we have seen a big global rise in data theft. There needs to be more emphasis on data.”

Follow Hamish Barwick on Twitter: @HamishBarwick

Follow Computerworld Australia on Twitter: @ComputerworldAU, or take part in the Computerworld conversation on LinkedIn: Computerworld Australia

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Boeing, Open Group, Qantas
References show all
Comments are now closed.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: The Open Group, boeing, Stephen Whitlock, security, metadata, data protection, security risks
Latest Blog Posts
  • IBM X-Force Threat Intelligence
    In the second half of 2013, the advancement of security breaches across all industries continued to rise. Within this report, we’ll explain how more than half a billion records of personally identifiable information (PII) such as names, emails, credit card numbers and passwords were leaked in 2013 - and how these security incidents show no signs of stopping.
    Learn more »
  • Swiss Nuclear Power Plant Improves Business Continuity
    Learn how Kernkraftwerk Leibstadt (KKL), a Swiss nuclear power plant, achieved 95% virtualization with 50% fewer servers in just two months by implementing a Vblock System. The solution ensures that KKL can reliably deliver the continuous electricity supply safely and cost effectively.
    Learn more »
  • The Three Essential Steps to Successful Cloud Migration
    Businesses and enterprises have quickly realised the power and efficiency of cloud computing, but migrating to the cloud can be a challenging process. This guide leads you through the three key steps you should take to assess your workload, select the most appropriate cloud model and ensure your cloud provider’s migration methodology stacks up.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Latest Jobs
Salary Calculator

Supplied by

View the full Peoplebank ICT Salary & Employment Index

Recent comments