Building a better virus defense
Antivirus on the desktop is fairly mature. However, the IT organization must now coordinate a layered defense to prevent viruses from penetrating the core network, particularly via e-mail. In addition, the IT organization must develop a comprehensive configuration, monitoring, and event response function within the security operations center.
Security management will evolve into three functional areas: user, event, and configuration management. User management aggregation (identity management and provisioning) will mature rapidly (2004). Security event management consoles (collecting intrusion detection system, firewall, and host events) will remain out of the mainstream until 2005. Security configuration consoles (central distribution points for firewall, personal firewall, and eventually server configurations and policies) are least mature, with viable integrated products appearing in 2006-07.
[ Read more ]