Businesses should press suppliers to make security
easier to implement, computer security expert Bruce Schneier said
last week.
Schneier, chief technical officer of internet security group
Counterpane, said the main problem facing organisations was not
security itself, but using security.
Interviewed at Infosecurity Europe, he said that too many
suppliers were developing complex security products that were
difficult to deploy. "They are focusing too much on technology.
They have great products and they wonder why people are not buying
them," he said.
The answer to poor security, Schneier said, is not better
education of users, but security products that are simple to
use.
Schneier said out-of-the-box encryption products and technology
that allowed IT departments to check the security or laptops
remotely were good examples of meeting this need, as was
Microsoft's decision to issue all of its patches on the same day of
the month.
"Suppliers need to deliver much more than they have provided so
far. I would like to see more pressure from users and the
government, especially from the US government," he said.