Power Of Nature To Enhance Internet Security

Uploaded on 2016-12-06 in TECHNOLOGY--Developments, NEWS-News Analysis, FREE TO VIEW

Nature has provided insights for engineers for years, inspiring technical solutions to challenges that replicate the elegant perfection of approaches that work in the natural world. 

The next generation of cybersecurity is being enabled by the quantum nature of the universe itself.

Solutions inspired by nature are being applied to diverse fields including energy production, medicine and healthcare, architecture, food production, transportation and manufacturing. (image: quantum phase diagram is the Hofstadter butterfly)

Nature is now providing engineers with the missing link that can help with the most vexing challenge of our age: enabling both security and functionality in our interconnected IT systems. 

Next generation cybersecurity is needed right now. Cyberattacks are increasing across multiple industries and every level of government. Over the last decade, attacks have been directed against governments, academia, financial institutions, businesses in every sector, and even individuals and their homes. 

In Europe, attacks have damaged the energy sector, and many believe more onslaughts against critical infrastructure and services are in our future. Attacks can even impact the safety of our cars, as hackers have shown they can successfully take over systems embedded in vehicles, and entire airports have been shut down by assaults against the aviation industry. 

Attacks in the healthcare sector have violated the privacy of hundreds of millions of patients and have disrupted hospital and emergency care. Attacks have also been conducted against political campaigns as far back as 2008. The escalation of these attacks in 2016 is raising fears that cyberattacks against electoral systems will threaten democracy itself.

All indications are that these assaults will continue. Adversaries, including cyber criminals, states seeking national security information, hackers seeking glory, and hacktivists pushing causes, have all come to realise the value of successful cyberattacks, and they show no sign of stopping. 

Defenders need to leverage security solutions that increase the amount of effort required by criminals while ensuring the freedom of action and functionality in our protected systems.  Current approaches are all variants of a security theme from the 1990’s called “Defense in Depth,” where security is layered on at every point in the IT stack. 

Security solutions are run on end devices, in networks, on servers, in the cloud and everywhere in between. This approach mitigates risk when properly engineered and overseen, but it is always expensive. Defense in depth has become expense in depth.  And still, adversaries find ways to get in.

Besides expense, today’s defense in depth faces several technological challenges. Engineers in academia, industry and government have designed approaches to address these challenges, including mechanisms like Hardware Security Modules (HSMs) to safeguard and manage security keys for authentication and conduct encryption and decryption. 

Until now, the state of art of HSM devices kept them out of reach of most businesses. Now, breakthroughs in innovation based on quantum effects, advances in key and policy management techniques are being coupled with HSM devices, turning them into more powerful tools capable of generating, managing, and safeguarding large numbers of the most secure encryption keys possible.

All encryption keys require random numbers. The most sophisticated random number generation algorithm that can possibly be created by humans using conventional computers will still only generate pseudo-random numbers. Pseudo-random algorithms are mathematically predictable.      

The one place where nature appears the most random is in a special quantum effect observable by specialized equipment. At a quantum level, sometimes matter just appears. Then it disappears almost as fast as it appeared.  It does this in ways no one can predict, and can be utilized to generate truly random numbers. By building solutions based on a foundation of truly random numbers for key generation, new levels of trust and security can be engineered into our systems.

Quantum effects are being leveraged to generate random numbers at high rates and in ways that make guessing keys impossible, removing an important attack avenue for cyber criminals. Until this quantum effect was used, every other accepted method was not truly random, or was too slow to deliver the security really needed. 

CTOVision:            IBM breakthrough in Quantum Computing:
 

 

« Snowden Loses In Norway
AI Beating Humans? Not In My lifetime, Says Google Chief »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Cyber Defense Media Group (CDMG)

Cyber Defense Media Group (CDMG)

CDMG is the leading global media group for all things cyber defense.

APWG

APWG

APWG is the international coalition unifying the global response to cybercrime across industry, government, law-enforcement and NGO communities.

Hillstone Networks

Hillstone Networks

Hillstone Networks offers a broad range of security solutions for enterprises and data center networks – whether physical, virtual, or in the cloud.

TokenOne

TokenOne

TokenOne is a Cyber Security software company that makes it easy to replace passwords, tokens and other forms of authentication with a more secure solution.

Securicon

Securicon

Securicon provides expert consulting for application, system and network security.

Omada

Omada

Omada is a leading provider of IT security solutions and services for identity management and access governance.

ClearBlade

ClearBlade

ClearBlade is the Edge Computing software company enabling enterprises to rapidly engineer and run secure, real-time, scalable IoT applications.

oneM2M

oneM2M

oneM2M is a global organization creating a scalable and interoperable standard for communications of devices and services used in M2M applications and the Internet of Things.

HUB Security

HUB Security

Hub Security provide Ultra Secure, Military Grade HSM (Hardware Security Module) Solutions for Blockchain and Digital Assets.

iosiro

iosiro

iosiro was created to guide companies through securely using blockchain technologies. We help teams launch and manage ICOs, deploy secure dApps, and integrate private networks into business practices.

AlJammaz Technologies

AlJammaz Technologies

AlJammaz Technologies is the leading Technology Value-Added Distributor, which distributes advanced technology products, solutions and services in area including networking and cybersecurity.

Shorebreak Security

Shorebreak Security

Shorebreak Securioty specialize in conducting highly accurate, safe, and reliable Information Security tests to determine the risks posed to your business.

Cyber Risk International

Cyber Risk International

Cyber Risk International offer CyberPrism, a B2B SaaS solution that empowers businesses to perform a self-assessment of their cyber security program.

Intuitive Research & Technology Corp

Intuitive Research & Technology Corp

Intuitive Research and Technology is an aerospace engineering and analysis firm providing services to the Department of Defense, government agencies, and commercial companies.

Sterling Information Technologies

Sterling Information Technologies

Sterling is an information security, operational risk consulting and advisory group. Our Advisory services help to safeguard information assets while supporting business operations.

TrafficGuard

TrafficGuard

TrafficGuard is an award-winning digital ad verification and fraud prevention platform.