Five New Security Trends Relevant To Your Business

Cyber security is becoming a major priority across all industries, as enterprises seek out technologies and tactics to protect their data from increasingly sophisticated threats, according to CB Insights' NExxTT Framework: Emerging Trends in Cybersecurity Report. 

While some trends, including container security and software defined networking have seen great interest and adoption, a number of emerging cybersecurity trends fall into an "experimental" category, representing conceptual or early-stage trends with few functional products that have not yet reached widespread adoption, the report found. 

However, these trends have sparked proof-of-concept work, and companies should be on the lookout for their spread in the future. Here are five experimental cybersecurity trends businesses should pay attention to: 

1. Disinformation Defense
Information warfare, including the rise of DeepFakes, represents a threat to societal and political systems worldwide. Now, new technologies are emerging to fight this digital deception, including those that authenticate digital media at scale, the report noted. 

"People are already confusing fact and fiction; however, the technologies behind the spread of disinformation and deception online are still in their infancy, and the problem of authenticating information is only starting to take shape," the report stated. 

2. Open Source Security
Enterprises are increasingly adopting open source software, which also increases the risk of exposure to open source security vulnerabilities, according to CB Insights. However, new tools on the market can help secure open source code so developers and companies can reap its benefits. 

"Startups are already rising to help secure the open-source software market, which analysts estimate to be worth around $14B today," the report stated. "Look out for companies that are developing systems for continuously monitoring open-source application dependencies and those that let analysts quickly respond when new vulnerabilities are disclosed." 

3. Zero-Knowledge Proofs
Zero-knowledge proofs represent a breakthrough in data privacy, allowing multiple parties to confirm that they have knowledge of confidential information, without actually revealing that information, according to the report. 

"A zero-knowledge proof (ZKP) is an authentication scheme that enables ultra-secure communications and private financial transactions and file sharing," the report stated. "The technology also eliminates the need to exchange passwords, and theoretically could reduce the number of data breaches from stolen login credentials."

Applying ZKP to cryptocurrency could lead to advances in privacy as well, the report noted. While the technology remains computationally expensive, experiments are underway in industries including finance and pharmaceuticals, it added. 

4. Homomorphic Encryption 
Homomorphic Encryption (HE) is often called the holy grail of enterprise data security, as it keeps data secure while it is in use, according to the report. While in the past, HE has been computationally intensive and slow, advances in computer processing power are making it more usable, and businesses are now using the technology to analyze medical datasets, protect cloud data, and prevent data breaches, the report noted. 

"In the future, look for homomorphic encryption to play an important role in securing data in use across a multitude of industries," the report stated. 

5. Blockchain Security
Though some of the hype around Blockchain is dying.  However, blockchain security tools (also known as smart contract security) can secure enterprise blockchains that are in use from targeted attacks.

"Securing enterprise blockchain ecosystems and auditing smart contracts will become more important as institutions incorporate these technologies into critical business applications," the report stated. 

Whiles not all of the trends identifies by CBInsights may reach maturity, businesses will need to develop enterprisewide cultures of security governance and constantly monitor user access rights and device permissions for possible irregularities to stay ahead of proliferating and powereful security threats.

TechRepublic:        CBInsights:     Forbes

You Might Also Read:

The Attack Surface Is Growing Faster Than Ever:

Five Tech Trends Driving Cyber Security:


 

 

« Fraudsters Target Social Media Influencers
IBM X Force Dissect The Destructive Power Of Malware »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

CIO

CIO

CIO provides technology and business leaders with insight and analysis on information technology trends

PubNub

PubNub

PubNub enables developers to build secure realtime Mobile, Web, and IoT Apps.

Micro Focus

Micro Focus

Micro Focus is one of the world’s largest enterprise software providers. We deliver trusted and proven mission-critical software that keeps the digital world running.

Professional Insurance Agents (PIA)

Professional Insurance Agents (PIA)

Professional Insurance Agents (PIA) offer commercial insurance services including Cyber Liability insurance.

Tessian

Tessian

Tessian (formerly CheckRecipient) is a next-generation email security platform that helps enterprises counteract human error and significantly reduce the risk of data loss.

IPN (ICT Research Platform Nederlands)

IPN (ICT Research Platform Nederlands)

IPN promotes academic research and education in the ICT field by building and maintaining a national community, and by developing policy to advance the field. Areas of focus include Cyber Security.

New Zealand Internet Task Force (NZITF)

New Zealand Internet Task Force (NZITF)

The New Zealand Internet Task Force (NZITF) is a non-profit with the mission of improving the cyber security posture of New Zealand.

Alpine Cyber Solutions

Alpine Cyber Solutions

Alpine Cyber is a Managed IT Service Provider focused on cybersecurity and cloud services.

Rhino Security Labs

Rhino Security Labs

Rhino Security Labs is a top penetration testing and security assessment firm, with a focus on cloud pentesting, network pentesting, web application pentesting, and phishing.

Global Cybersecurity Association (GCA)

Global Cybersecurity Association (GCA)

GCA’s Symposium and conferences featuring global thought leaders and CISOs provide a global best practice perspective on cybersecurity.

CrowdSec

CrowdSec

CrowdSec is an open-source & participative IPS able to analyze visitor behavior by parsing logs & provide an adapted response to all kinds of attacks.

PA Consulting

PA Consulting

PA Consulting Group is a consultancy that specialises in strategy, technology and innovation. Our cyber security experts work with you to spot digital and technology security risks and reduce them.

Cognisys Group

Cognisys Group

Cognisys provides cyber security penetration testing and compliance services from its offices in Leeds and Manchester.

MIS Solutions

MIS Solutions

MIS Solutions is a managed cloud and IT security partner making technology work for you.

Telarus

Telarus

Telarus is a Technology Services Brokerage that holds contracts with the world's leading cloud voice, contact center, cybersecurity, mobility and IoT providers.

Abissi

Abissi

Abissi offer cyber intelligence, IoT security, automotive security, red teaming, application security and artificial intelligence security services, with a focus on security by design.