Boeing backs metadata for information security
- 16 April, 2013 14:39
Metadata – 'data about data' such as the non-image-related information stored when people snap a photo on a digital camera – should be used to label corporate information according to one US security specialist.
Speaking at The Open Group conference in Sydney, Boeing information security chief strategist Stephen Whitlock told delegates that if more digital data was labelled it would be easier to secure. “What we are talking about is a shift from discretionary access control system to mandatory access control. If you apply metadata to the data and have a set of policies, the system decides the access,” he said.
For example, if an aircraft designer was logged into a CAD system and working on a certain project, by default the system would be able to assign certain rights to that data.
Whitlock showed delegates the type of metadata stored by his camera. This included the owner’s name, the firmware used by the camera, and if the camera had been repaired.
“I like this example because when you press the shutter the camera did all this,” he said. “Most of the applications I use are much smarter than my camera.”
“The industry that has tonnes of money at stake in various verticals ought to care about corporate data as much as a picture someone snaps with an iPhone,” Whitlock said.
He added that data theft was “much easier” than physical crime because it was faster and left little to no trace.
“There is a lot less risk when you are stealing data, especially if you’re doing it over the Internet from one country to another,” he said.
Whitlock said he would like to industries invest in data labelling including rules and protocols.
“Data is now worth more than hardware and we have seen a big global rise in data theft. There needs to be more emphasis on data.”
Follow Hamish Barwick on Twitter: @HamishBarwick
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
Five trends affecting legal CIOs
CIO Roundtable: The changing face of security
Bitcoin malware count soars as cryptocurrency value climbs
Bouncing Back From CIO Unemployment
Union slams latest fibre-to-premise trial in Tasmania
451 Group Research Report MDM Trends
As the BYOD model continues to grow at twice the rate of corporate-owned devices, enterprises are facing an increasingly diversified mobility landscape. And though BYOD brings many benefits, complex management and security challenges are also ushered in. Read this report to understand what MDM can and cannot do for you and which solutions are being chosen today - and tomorrow.
CMO's Customer Engagement in a Multi-Channel Marketing World
In CMO’s inaugural customer engagement report, we look at how Australian marketers and customer relationship managers are responding to the needs for cross-channel engagement, where the barriers still lie and the importance being placed on these activities by their wider organisation.
ERP Selection: Finding the Right Fit
Finding a needle in a hay stack is hard, but the task pales in comparison to finding a specific needle in a pile of needles. Selecting the ideal Enterprise Resource Planning (ERP) solution can feel just as daunting. ERP represents a serious investment for any organisation and is vital to future success. This report explores the strategies organisations are employing to find the right ERP fit that will give them the tools they need to thrive.