Rash of Security Product Security Flaws
If you needed any more proof that software security is extremely difficult, look no further than the recent slew of vulnerabilities in security products.
- Vulnerability in Snort Preprocessor
- Cisco PIX Firewall, ASA and FWSM Vulnerability
- PGP Desktop Vulnerability
- Microsoft Malware Protection Vulnerability
- McAfee Virex Vulnerability
- Trend Micro OfficeScan Vulnerability
Having worked for security product vendors in the 90’s, I can confirm this is a nightmare and great effort is expended to avoid this bad publicity. These are security experts designing systems to protect your networks and here are instances where security products can jeopardize the security of your network.
Admitting up front that this is a leap in logic - - - it is another reason I’m very concerned about latent vulnerabilities in control system software. My assumption is security product vendors know more and care more about writing secure code than control system vendors.
Author: Dale Peterson
Posted: February 20th, 2007 under Security Vendor.
Comments: 1
Comments
Comment from Rob Lewis
Time: February 25, 2007, 3:56 pm
Your worries are shared by many.
I have discussed with Jim Cutts about out Trustifier technology which is a security sub-system that adds kernel level securty policy enforcement to existing IT setups.
Any appliance that is running on Linux will not allow itself to act as an attack vector itself, if Trustifier is dropped on.
The product works in appliance form with all platforms to protects systems and data when patches are not yet available, or vulnerablities are unknown.
Any future control systems that run Linux can be converted to Trusted systems with this product.
We hope to raise our profile and make our case for this product in the coming year.
Write a comment