You are here: silicon.com > Management > IT Director

IT Director

'Irresponsible' encryption experts threaten corporate security

IT professionals call for more checks and balances...

Printer Friendly Email Story RSS

By Sally Watson

Published: 30 January 2002 17:45 GMT

IT professionals think security vendors should be regulated to prevent "negligent and irresponsible" project implementation.

According to a survey, sponsored by PKI specialist Indicii Salus, 68 per cent of respondents felt encryption companies were behaving irresponsibly by allowing anyone to download their software.

Relative novices can then use the technology without fully understanding it, thereby jeopardising the security of the companies employing their services.

A similar number of respondents felt an independent body should be set up by the government and industry to monitor the purchase and use of encryption technology.

Paran Chandraekaran, chief executive of Indicii Salus, said that people in the IT industry are angry with the top management consultancies in particular for offering 'slapdash' security advice.

"You can't just box security up and shove it out to Joe Public," he told silicon.com.

In one example, Chandraekaran came across a 26-year-old consultant with three months information security training who had been sent to a FTSE 250 company to implement a £1.2m European rollout.

"It beggars belief that you can irresponsibly sell this kind of business and mission critical kit," he added.

According to Chandraekaran, problems occur particularly after PKI technology has been rolled out across a large organisation, leaving encryption keys stored on the desktop vulnerable to spoofing and copying.

"Until we get to be more responsible about weeding out irresponsible vendors then we're putting our businesses and infrastructures at risk," he said.

Fred Piper, a professor at the University of London, agreed that the situation for companies wanting to buy security technology wasn't clear.

"There are obviously problems," he said. "Many people are making exaggerated claims for PKI."

The DTI is expected to release the findings of a study into the information security industry in the next few weeks which could lead to security professionals being licensed under the Private Security Industry Act.

Add Comment Add comment  Printer Friendly Print story with   Email Story Email story  
In
Skills & Careers

IT Director

SME Director

Law & Policy

IT Pro


Related Links

Industry wakes up to security licence threat

Techies fear the chains of government security laws

Security still not on the agenda for IT directors

Companies urged to make security top of board's agenda

IE 'most influential tech product for 25 years'

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Paul Michaels A guide to cutting IT costs Comment: Don't slash and burn

Natasha Lomas Kurzweil: "Technology is a double-edged sword" Q&A: Ray Kurzweil, inventor and futurist on the Turing Test, human vs machine intelligence, why being funny is clever, and the dangers of advanced technologies...

Recession: Time to play fast and loose with outsourcing

Has the IT skills crisis turned a corner?

IT illiterates 'hold back business'

Lloyds TSB hires RBS exec as new IT chief

Don't dither over IT in the downturn, banks told

Time off for Dell workers… unpaid


  • Jobs
ASP.NET / MS SQL Developer

Qualifications:- BA/BSc (hons) in Compute rScience or related field- 5+ years experience with Microsoft .NET technology- Good written and verbal ...

Buyer Planner

Mfg Pro and Web plan experience would be a distinct advantage.A Technical or engineering qualification in a complimentary discipline would be an ...

Applications Support Manager/Team leader (Berkshire, up to 60k)

The Business Applications Team is made up of skilled IT professionals based predominantly in Berkshire who now require an experienced manager to ...

Agenda Setters 2008
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

Extend the benefits of BladeCenter beyond the data center

Calculate your energy savings with IBM Power Configurator tool

Live Webcast: Dell EqualLogic PS Series Demonstration for SQL Server Protection and...

Insiders' Guide to Evaluating Remote Control Software

Online retailer tackles Gok Wan's fashion army

Leicestershire police save time with virtualisation

RSA rings the changes with Salesforce.com

DHL slashes costs and goes green with digital bills

Expedia's got no reservations on hotel analytics

Cern keeps an eye on its assets

Stories from the web...


£25m for Queen's fight against e-crime

Know your outsourcing? Now get the qualification

ID cards 'could replace passports'

Super comms database ditched for next year?

Lotus Notes coming to Nokia S60 phones




Quick Sitemap Links: