D: Walt Mossberg's security lessons

D: Walt Mossberg's security lessons

Summary: Walt Mossberg has a dream. His computer will not make him feel like he is a part-time systems administrator.

SHARE:
TOPICS: Security
5

Walt Mossberg has a dream. His computer will not make him feel like he is a part-time systems administrator. During an interview with RSA Security CEO Art Coviello and Symantec CEO John Thompson, Walt asked, "When will you protect my computer without annoying and bothering me…and stop telling me the diff between a virus, a Trojan and a worm. "

dsecurity400.jpg

On stage: Art Coveillo, John Thompson and Walt Mossberg

Symantec's Thompson responded: “The next instantiation of our Norton Internet Security Suite will have an intelligent firewall. It will know where you go frequently. If we can tag that you have been before, we won't bother you. We are using technology to make it less noisy." However, security software companies don't want to be invisible, he said. "In part, we want users to know that we are working to protect them." The reasoning--when users reach the end of a paid subscription period, they may think that the software hasn't done anything userful with out the feedback. "It's a balance between alerting users and working on their behalf and not communicating," Thompson said.

Coviello added his perspective: "It’s always about an equation, balancing security and risk, convenience to users and administrators and cost. As we make it easier for user, it's high time we make it harder for the attacker. We are offering anti-phishing service to consumer facing organizations, working with telcos and ISPs to find the source of attacks, shutting phishing sites down in five hours."

Thompson went on to talk about the need for more transparency in the security technologies themselves, but not to change the user experience in delivering security services, such as having to deal with dozens of passwords. Thompson views federated identity, similar to how the ATM banking system works, as a key to creating an environment where people feel more secure making online transactions.
 
Coviello noted the efforts so far in that direction (using the SAML protocol) been "spectacularly unsucessful," especially around getting back end agreements for accepting liabiliity for accepting identities. He predicted it will take several years for protected identities to take root.

dsecuity2.jpg

Walt didn't seem very satisfied with the answers. Then he asked why aren't all security services in the operating system. 

Thompson answered: Certain components should and can be embedded in the operating system, but Microsoft Windows wasn't designed for the Internet and has a lot of functionality in the kernal that wasn't intended for current users. He allowed the the SP2 fix and Vista are more secure.

Walt probed again, asking why everything to secure a PC couldn't come from Microsoft or Apple.

"If you believe that monoculture is a healthy environment, if all the security is built by the same company, the lack of diversity and heterogeneity is as big a problem as having Microsoft building it all themselves," Thompson said. "Microsoft building it all and being the savior of the world is not believeable."  

Coviello added that there are parts of software other than the OS that are vulnerable. "What gives me hope is firms like John's and mine own have overlaps--in security a little bit extra is not a bad thing."

Walt asks about Microsoft's launch of its OneCare managed service. Thomspon said that the service solves problems that are less significant today (worms, virus) than in the past and compared to online fraud and identitytheft.

So...virus, worms and trojans are less of a threat (give Microsoft its due), financial attacks via phishing and other techniques is the battleground. Monocultures are bad, diversity yields better results. Less noisy is better, but some noise is good for business.

But, Walt wasn't done. The number one complaint from his readers is about spyware and adware, and Symantec products are weak in that area he said. A slightly bruised Thompson talked about applying some kind of rating system so that users get the ads they want.

Walt's final word--no one should be allowed to put anything on my computer without my permission. Case closed...

Topic: Security

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

5 comments
Log in or register to join the discussion
  • The Safest PC is OFF the PC - in the "Cloud"

    http://www.zoliblog.com/blog/_archives/2006/5/25/1985817.html
    Zoli Erdos
  • Slight contradiction in Walt's questioning...`

    first he wants security to work without him being bothered. Next, he says you'd better get my permission before putting anything on my PC. Can it be had both ways?

    db
    dberlind
    • Nags

      Apparently Vista asks nags 7 times before removing a desktop
      icon. Self promoting software is a constant presence on most
      commercially sold Windows boxes. Walt Mossbergs request is
      reasonable and not at all a contradiction. The request is to have
      the OS act as a good gatekeeper where it is important, then
      leave you alone where it isn't. He's asking for substantially less
      nags not a greater tolerance for them.

      Vista's solicitation of a users attention is set to widen the
      phishing vector just as the door starts to close on viruses. It's
      going to be the worlds largest game of simon says as we start
      dismissing the popup products of a kludgy permissions scheme
      as fast as we can go. In light of this security "progress", I'm glad
      someone is asking some hardball questions and making the
      security racket squirm in their seat. He's making everyone else
      look like they are on the payroll.
      Harry Bardal
  • It is a shame....

    It is a shame that these CEO's do not talk about the Trusted Computing Group's technology. TPMs are available with almost all business PCs today. the consumer is going to lose out because all PCs bought today without TPM will be obsolete as early as 12 months from now. Security services leveraging TPMs will be abound 12 months from now. Phising will be a thing of the past. Multiple passwords no longer necessary.

    http://www.trustedcomputinggroup.org
    hawk520
  • Current versions of Norton's software are a pest

    Norton errs way too far on pestering users. This article confirms what I have always suspected .. that they do this to make users think that they are being protected and NOT because it is actually necessary to be so intrusive.

    I use Grisoft AVG (the full version) because it offers good protection without all of the bother of Norton AV.

    And AVG is also stable and reliable, neither of which is true of Symantec's offerings. Sometimes, the only way you can fully uninstall Norton AV is to reinstall Windows.

    Perhaps Norton/Symantec needs to stop the talk about next-generation virus protection and actually rewrite their software from the ground up so that it doesn hog so many resources or cause so many problems with applications. It doesn't matter what new bells and whistles they add to this lousy product if they don't address the crashes and slow system performance caused by their creaky old AV engine.
    geewhizbang