Executive Viewpoint 2013 Prediction: Viewfinity
Guarding Your Infrastructure Will Require a Different Level of Protection
I believe that there will be a new level of virtualization technology used in 2013 and this will require additional security. As people move to the convenience of virtualization, you still have to be concerned about security. Today's virtual landscape includes servers and machines, but the full potential of virtualization will be realized in the form of a virtual infrastructure -- switches, routers, firewalls, a virtual data center. This trend will become a very common way of working. For example, if you have a screen with drag and drop, you can connect multiple servers, you can decide which switch to use, what firewall to use. Most vendors will sell virtual appliances to companies that provide virtual infrastructure. And with this expansion will come additional security issues because if the need for protection, including the need to protect the ability to go from one virtual data center to another.
The Beginning of the End of the Need for Windows Anti-virus Protection
This is predicated by the introduction of the Windows 8 operating system. The ability of tablet PCs to run all applications in the enterprise will bring Windows 8 to the center of competition. Enterprises will adopt Windows 8 and Windows 8 applications more and more, based on default/deny policy, the same was that iOS apps are approved through the App Store. Default/deny policies will be more and more popular on Windows 8 as well as Windows 7. People will start to write more Windows 8 IT applications. In ten years, this will be the only acceptable model so at some stage, anti-virus will fade away from PCs like they are from Macs. Remember that Apple was the first company to issue Windows (MS was still DOS back then)? Well the iPad is only a read device, while MS tablets are read/write/execute, and more. I’m not saying security will disappear but it’s quite possible that the need for anti-virus will disappear. It will be harder and harder to write viruses for Windows. Just as we don’t see malware and viruses prevalent on iOS because of this default/deny model, we will see less need for security for Windows apps.
Local Critical Infrastructure Attacks Will Become Real
There have been a lot of stories about the potential for attacks on critical physical infrastructure, and now unfortunately the stage has been set for a real attack. Someone will shut down an area of a country, the electric or power grid for example. It’s not just by chance that we have more customers in the energy industry -- there is a real call to action for more security around those communications networks. The fact that it’s not happening today is simply because there aren’t that many computer-literate terrorists. However just the way they’ve trained to become pilots, they’re learning computer technology.
Cyber Legislation Will Not Be Passed or Enforced
Always in this discussion the empowerment of any country is up for debate, some members of parliament are crying that cyber security laws and cyber security enforcement or control goes against civil liberties and freedom. I don’t believe the US or any European country will pass any kind of cyber legislation unless a big breach or worse, harm against people, or some other catastrophic event or tragedy occurs. It is much too difficult to make decisions on spending millions of dollars for preventative measures, unfortunately, just as we saw the creation of TSA only after the 9/11 tragedy.