Open source software will have to lift its security game if it is to match that of proprietary software, particularly if its use proliferates, according to representatives from global information security companies.
Asia Pacific vice president of security giant Symantec, Vincent Steckler, said open source is “not the silver bullet”.
“The reason viruses are written for Microsoft is because most people use it,” Steckler said. “If 90 percent [of software] was open source there would be just as many attacks, only worse. Imagine smart hackers with [access to] source code.”
Speaking at IDC’s SecurityVision 2004 conference in Sydney, Steckler compared the motives of operating system intruders and virus writers to that of the infamous New York bank robber Willy Sutton who, when asked why he robbed banks, said, “’Cause that’s where all the money is”. Steckler said, “Replacing Microsoft with open source won’t solve the security problem.
“Why would anyone write viruses for OS/2?”
SurfControl’s technical manager for e-mail products and technology, Richard Cullen, seconded this argument of increased proliferation leading to more security issues.
Open source and Linux hasn’t seen as many exploits because of market penetration,” Cullen said. “There are viruses for Linux but Microsoft is a bigger target.”
On the topic of source code access, Cullen said: “Recently, some of Microsoft’s source code was leaked and an exploit was discovered within days. This happened because the code was open.”
NSW Fisheries’ principal IT services manager Gregory Krasovitsky agreed that market penetration is an important factor when comparing open versus closed source security.
“We don’t see as many [security] patches for open source because of its market penetration and security companies are writing software for 90 percent of the market,” Krasovitsky said.
“For example, Debian (Debian GNU/Linux) has left vulnerabilities there and didn’t release any patches for them.”
Krasovitsky, who participates in state government open source and security forums, said it is “very clear” that the number of patches for Microsoft is more stable than that for open source software, which are growing rapidly.
"Open source and community-driven security is not good enough,” he said. “I have a funny feeling that open source is now being developed by major vendors like Novell and IBM. In a year or two open source will start matching the penetration of Microsoft. Then we will see more patches being developed.”
Global information security vendor Check Point made a conscious decision to adopt the open source Linux operating system and that it is up to the task, according to the company’s Australia and New Zealand regional director Scott Ferguson.
“We are proud of the fact that we use Linux and it is delivered in a ‘hardened’ way,” Ferguson said. “We are also confident that it is more secure than Microsoft [Windows] or other proprietary operating systems.”
- +
Strategies for Dealing With IT Complexity 24 December, 2007 10:30:47
Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.
- +
Can Macs conquer the enterprise? 11 January, 2008 10:55:53
The field is wide open for a Macintosh insurrection on the business desktop. It could happen, but probably won't. Here's why.If Apple were a football team, the New England Patriots would have had some serious competition this year.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Controlling storage costs with Oracle database 11g
The state of Middleware
Making the Business Case for IT Consolidation
Refresh your AUP: Top tips to ensure your acceptable use policy is fit for purpose
How to improve employee productivity in small and medium businesses
Everything you need to know about email and web security (but were afraid to ask)
IT Service Management Needs and Adoption Trends: An Analysis of a Global Survey of IT Executives
- White PaperWhat you don’t know can destroy your business. It’s hard to imagine modern business without the internet but in the last few years it has become fraught with danger. Read on to discover how internet security can give your business a competitive advantage.
- White PaperJoin industry expert Bob Spurzem and Chuck Arconi of Fox Hollow to discover how to reduce Exchange total storage and keep it at a manageable level. Learn how Exchange storage growth can be contained without sacrificing security and accessibility.
- White PaperDiscover how the integration of disparate technologies in your company can lead to greater user productivity, improved management, lower costs, higher efficiency, and easier risk mitigation.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
CIO Live Podcast #79: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires Part II 05 October, 2007 06:00:00
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #78: Brent D Taylor, author of The Outsider's Edge: The Making of Self-Made Billionaires 28 September, 2007 17:34:25
For his new book, The Outsider's Edge: The Making of Self-Made Billionaires, social researcher Brent D Taylor spent four years of intensive research investigating the psychological make-up and backgrounds of some of the world's richest men and women, including IT luminaries Bill Gates, Larry Ellison and Steve Jobs. Taylor discovered that, despite working in different industries and coming from different upbringings, they all have one thing in common -- they are all outsiders. - +
CIO Live Podcast #77: Panasonic Speeds Up Trans-Pacific File Transfers, Part III 21 September, 2007 07:00:00
Part three in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #76: Panasonic Speeds Up Trans-Pacific File Transfers, Part II 14 September, 2007 07:00:00
Part two in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance. - +
CIO Live Podcast #75: Panasonic Speeds Up Trans-Pacific File Transfers, Part I 07 September, 2007 07:00:05
Part one in our three-part special report from CIO's sister publication Network World in the US, as Paul Desmond reports from the Network World IT Roadmap Conference in Santa Clara, California. With development teams in the US and Japan, Panasonic needed a more efficient way to move very large files between the two locations. Iben Rodriguez, IT consultant for Panasonic Research and Development, explains how a storage-area network and virtual server technology helped speed up WAN performance.
- +
Excerpt: Counterterrorism Strategies for Corporations 27 November, 2008 12:36:00
Mike Ackerman calls terrorism "the skunk at the globalization lawn party." His new book lays out 10 principles for how businesses can prepare and respond.Mike Ackerman calls terrorism "the skunk at the globalization lawn party." His new book lays out 10 principles for how businesses can prepare and respond. - +
The 10 Ackerman Principles of Counterterrorism 27 November, 2008 12:43:00
Consultant and author Mike Ackerman's 10 counterterrorism principles for business.Consultant and author Mike Ackerman's 10 counterterrorism principles for business. - +
Survey: Despite Risks, Employees Still Holiday Shop at Work 27 November, 2008 10:02:00
As Cyber Monday approaches, research suggests a majority of workers will use their work computer to shop this holiday season. But despite the continued growth in online shopping, employees and business still don't understand the riskAs Cyber Monday approaches, research suggests a majority of workers will use their work computer to shop this holiday season. But despite the continued growth in online shopping, employees and business still don't understand the risk. - +
Why Cybercrime is Thriving 27 November, 2008 11:52:00
A new Symantec report reveals just how large and sophisticated the online underground economy has grownA new Symantec report reveals just how large and sophisticated the online underground economy has grown. - +
Employee Safety in Global Hotspots 27 November, 2008 11:53:00
What risks do employees face in a sour global economy? What countries pose a growing threat of kidnapping for ransom? Is Columbia safer than Mexico? Insights from a former FBI hostage negotiator.What risks do employees face in a sour global economy? What countries pose a growing threat of kidnapping for ransom? Is Columbia safer than Mexico? Insights from a former FBI hostage negotiator.
Virtual magic: HR specialist throws out 40 servers, adds 8TB SAN and saves $100,000 for disaster recovery 01 December, 2008 15:28:00
EXCOM scores back-to-back award trifecta 01 December, 2008 10:46:00
“Just Graphics” isn’t enough any more 28 November, 2008 15:02:00
Why Sealy’s management sleep soundly at nights... 28 November, 2008 11:18:00
Datastor unveils iSCSI Universal Storage Appliance 28 November, 2008 09:56:00
|
||
|
||
|
|
||
|
Best Practice in Building an Integrated Information Management Strategy
Discover the business value that creating an integrated information platform can bring. Learn how to provide consistent, accurate information to all stakeholders within your business network. Integrate vital data from disparate sources and deliver a trusted information foundation. Read on to uncover the stepping-stones to your new information management strategy.
Buying Guides
Latest Products
Buying Guides
