Security Basics mailing list archives
End Point Security - relying on one vendor's product a weakness in itself?
From: "secrookie () gmail com" <secrookie () gmail com>
Date: Wed, 5 Mar 2008 09:59:49 +1100
Our company is looking into using one vendor's product to manage our workstations end-point security which consists of: Antivirus/Spyware Managed Firewall IPS Application Control Buffer Overflow Device Control (USB, PDA, Phones etc..) My understanding with the layered security/defense in depth principle, it would be foolish to go with one vendor's product as this creates one point of failure. If this product has a software vulnerability, then the security of the workstations (and specifically the attack vectors which the product is protecting) will be in jeopardy. There is no redundancy, its all or nothing so to speak. Its like buying a Multifunctional Printer - if the fax or scanner function breaks down, the whole device needs to be sent in for repairs then you cant print. Or if you buy the brand new Apple Time Capsule for your backups, and the hard disk breaks down, you then need to send the device to get repairs and would be out of WIFI for the duration of the repair. What do you folks think regarding the advantages/disadvantages with depending on one vendors product for your Windows workstation security in a global corporate (~50,000 seats) from a technical perspective? I guess a balance needs to be met with the risks with putting all our eggs into one vendors basket verses cost.
Current thread:
- End Point Security - relying on one vendor's product a weakness in itself? secrookie () gmail com (Mar 04)
- Re: End Point Security - relying on one vendor's product a weakness in itself? Malcolm Heath (Mar 07)
- RDP and SSL Chris Mitchell (Mar 07)
- <Possible follow-ups>
- Re: End Point Security - relying on one vendor's product a weakness in itself? krymson (Mar 05)
- Re: End Point Security - relying on one vendor's product a weakness in itself? Albert R. Campa (Mar 05)
- Re: End Point Security - relying on one vendor's product a weakness in itself? secrookie () gmail com (Mar 05)
- Re: Re: End Point Security - relying on one vendor's product a weakness in itself? 6us4jxp02 (Mar 06)
- Re: End Point Security - relying on one vendor's product a weakness in itself? Malcolm Heath (Mar 07)