Slashdot Mirror

← Back to Stories (view on slashdot.org)

Is Whitelisting the Answer To the Rise In Data Breaches?

Posted by timothy on from the none-shall-pass dept.

MojoKid writes "It doesn't take a rocket scientist to figure out that cyber criminals are quickly getting more sophisticated than current security, intrusion detection and prevention technology can defend against. And you have to wonder if the computer security industry as a whole is willing to take the disruptive measures required to address the issue head-on. One way to tackle the surging data breach epidemic is with a technology called "whitelisting." It's not going to sound too sexy to the average end user and frankly, even CIOs may find it unfashionable but in short, whitelisting is a method of locking-down a machine such that only trusted executables, DLLs and other necessary system and application components are allowed to run – everything else is denied. A few start-up security companies are beginning to appear in this space. The idea is to start with a known, clean system installation and then lock it down in that state so absolutely nothing can be changed. If you follow system security, regardless of your opinion on the concept of whitelisting, it's pretty clear the traditional conventions of AV, anti-malware, intrusion detection and prevention are no longer working."

2 of 195 comments (clear)

  1. Re:"whitelisting" by Anonymous Coward · · Score: 0, Offtopic

    What? A first post that's not "Fuck Beta!!"? I'm going to have to check to see what site I'm really on.....

  2. Re:SLASHCOTT by Anonymous Coward · · Score: 0, Offtopic

    YOU the /. community are one of most technically-able groups of users on the internet. Therefore, instead of whining about a FREE service that you no longer enjoy, why not group together and build something better?

    Two reasons. 1 - Having a userbase is what really drives a site like this. No one wants to go to a technically superior site just to be the only one reading and posting anything. Not even mighty Google could get around this one trying to compete with Facebook, and Google has been aggressive about it (did you sneeze? great, you just signed up for a G+ account!). 2 - We the users made this site what it is and created the success its owners enjoy today, they would sell no ad space on an empty no-traffic site, they would be foolish not to recognize this and listen to our opinions.