RSA 2009: Security technologies must be integrated

The biggest problem in information security is that organisations approach...

The biggest problem in information security is that organisations approach security in a piecemeal way with point products.

This is according to Art Coviello, president of RSA, the security division of EMC.

This means security technologies are not integrated and do not provide the best protection possible, he told Computer Weekly at RSA Conference 2009 in London.

"If the technology comes already integrated, it is much easier for organisations to implement a true security infrastructure," he said.

In the past year the industry has made progress towards integrating technologies developed by multiple suppliers, he said.

RSA has forged agreements with Microsoft and Cisco to embed RSA's data loss prevention (DLP) technology in some of their products.

The company is also integrating its technology in services such as the credit card information processing service offered by First Data. The credit card information processing service uses embedded encryption technology from RSA.

RSA is collaborating with IBM and HP on an encryption key management standard, the Key Management Interoperability Protocol (KMIP), which will allow key management to be standardised across multiple encryption applications.

"These are the kinds of things that will make it more effective for end users to implement security solutions," said Coviello.

This week, RSA announced a co-operation agreement with Trend Micro to take feeds from their anti-virus and anti-malware capability to bolster RSA's anti-Trojan service in its anti-fraud centre.

"I am proud of the fact that we were the thought leaders around this concept of an ecosystem of security providers and that people have latched on to it and said this makes sense, this is the only way to go about it," he said.

Read more about RSA 2009:

RSA 2009: Cyber fraudsters are getting smarter >>

Read more on Hackers and cybercrime prevention