The Akamai Blog Subscribe
Akamai InfoSec's Brick of Enlightenment
This is a sequel to yesterday's post -- the Akamai Security Podcast interview with Dave Lewis. Dave, one of our security advocates, is doing a lot of blogging over at CSOonline.com. He did so much blogging in November alone that I found it necessary to compile everything here. I wouldn't want you to miss anything, after all.Here it is, a compilation of November posts from his blog, Brick of Enlightenment:VPN
CSO Surveys: Decoding the Online Security Landscape
Akamai recently partnered with CSOonline.com to survey information security professionals on various web security topics. The surveys provide valuable insight into web security current trends and what information security professionals are doing to address them. Here are four whitepapers that explore the different threads. The Importance of Improving and Adapting Web Security With so much depending on Web site availability, CSOs are considering new ways to be cost-effectively proactive and
Akamai to Acquire Prolexic
Akamai announced this morning that it will acquire cloud security company Prolexic for about $370 million. The move extends Akamai's reach into the world of DDoS protection. In a press release, Akamai CEO Tom Leighton said: "Any company doing business on the Internet faces an evolving threat landscape of attacks aimed at disrupting operations, defacing the brand, or attempting to steal sensitive data and information. By joining forces with Prolexic,
Four Things to Ask Before Seeking FedRAMP Certificat ...
Part 3 in a series. A few months ago I told you about how Akamai achieved FedRAMP certification and how, in our opinion, it was a very big deal. To understand what FedRAMP is and what certification means for Akamai's security program, see the post, "Akamai FedRAMP Compliance is Huge for Security."After you read that, understand this: The path to certification is hard. All compliance efforts are difficult, of course. But
Oh The Hackers Online Are Frightful
Thanksgiving holiday planning is well underway in the US as is the holiday season that follows. It is gearing up to be a bumper sales cycle this year. This year will not be any different than previous ones in that in addition to great deals there will be bad actors attempting to play the role of good ole St. Nick with nothing but a bag of malicious code for
The DNS Security Collection
Welcome to the next step in our effort to make security content more easily available by topic. Today's collection of posts focuses on DNS-related threats and defensive measures. DNS reflection defenseRecently, DDoS attacks have spiked up well past 100 Gbps several times. A common move used by adversaries is the DNS reflection attack, a category of Distributed, Reflected Denial of Service (DRDos) attack. To understand how to defend against it,
So You Want to Secure Something
I've often heard the following question (or variants thereof): How do I secure [this thing]? Such a question rarely lends itself to a quick answer -- in almost all cases it prompts further questions: secure what, against what, in what cases, from whom? What options are you considering, and how will they help? Akamai InfoSec uses the Principals-Goals-Powers-Controls rubric to ask and answer these questions, and in so doing, help
Making Compliance Docs Public
Part 2 in a series.In my post about compliance and customer service, I briefly touched on one of the goals of Akamai InfoSec -- making as much of our compliance documentation public as possible. I want to spend a little more time talking about that, as it's something I'm increasingly involved with.Also, customer feedback is going to be crucial in determining which documents to tackle first.As I mentioned in the
Privacy Was in Danger Before 9-11
This week I participated in an online panel put on by the Information Security Buzz website. I got the following question: What 2 things are most likely to change the security industry in the next 2 years? And why? The question immediately made me think of the state of privacy. My full answer is here. As to the privacy issue, I answered: After 9-11, privacy got shafted in the rush