Читать книгу The Digital Big Bang - Phil Quade - Страница 21

“Speed is at the nucleus of the cyberfrontier.”

Roland Cloutier, ADP

“Greater connectivity, faster transmission and processing speeds, and machine algorithms result in faster and potentially more accurate decisions.”

Scott Charney, Microsoft

Speed must be viewed and treated like the fundamental element it is. But by its very nature, security slows things down. When you're in the security business, you're fundamentally in the business of slowing people down, and that's a horrible business to be in. Security must harness the power of speed to secure information while protecting against cyberattacks at the same rates.

Simply put, all cybersecurity must be extremely fast.

Security without speed is a losing proposition. In fact, slow security is often no security. Good security strategy must be based on leveraging speed, specifically

 Raw speed to detect and mitigate attacks in real time

 Processing capacity with more sensors, more data, and more insights to parse data more efficiently and find the smallest anomalies in system functionality

 Forward compatibility to create the headroom to implement future solutions that could involve even greater speed

Good security strategy must achieve these goals with as little impact as possible on the speed users have come to expect and demand. That's because in addition to the operational reason for speed, there is a practical reason: Users aren't willing to wait.

A consistent consequence results from that user impatience paired with cybersecurity techniques that don't feature speed as a fundamental component: Slow security solutions get shut off, either because they are too cumbersome or because they simply can't keep up. A security solution that lacks speed and thus is turned off provides zero benefit. Thus, slow cybersecurity techniques become greater impediments than benefits.

If organizations are forced to adopt tools that do not meet the needs and standards of fast data transfer, the odds are that not only will those organizations become less safe, but they will carry that lack of safety to every point of connectivity they share, endangering other organizations.

Acknowledging the inherent conflict between security and speed requires us to strategically design how, where, and when to slow things down, while maintaining and preserving as much velocity and efficiency as possible.

When it comes to cybersecurity, without speed, there is nothing. Users will, however, embrace a solution with speed as its key component.