RealTime IT News

FOCUS 09: McAfee Lays Out Security Battle Plan

LAS VEGAS -- McAfee CEO Dave DeWalt shared the stage with former Secretary of State and retired four-star Gen. Colin Powell for a joint keynote address here Wednesday. The two delved into the exponential growth in malicious code affecting Web sites, the next generation of security applications to combat them and the unintended consequences of overreacting to this new breed of hackers.

Ironically, it was DeWalt who played the role of the hawk, repeatedly using military metaphors to illustrate just how pervasive and insidious hackers and spam mavens have become in the Web 2.0 world and what McAfee and other security software vendors need to do to "defend our digital fortress."

"We're constantly under attack," DeWalt told several thousand attendees here at the company's FOCUS 09 conference in the Venetian Hotel and Casino Ballroom. "The bad guys are getting organized. This is not the hacker in your basement. We're talking about organized crime, organized terrorism and organized warfare."

DeWalt pointed to last Wednesday's massive spear phishing attack in which hackers stole thousands of e-mail account passwords from Windows Live Hotmail users and posted them on the Web along with passwords phished from other popular e-mail services including Google's Gmail and Yahoo as just the latest example of how vulnerable computer users have become to organized assaults.

"At least 20 countries have invested in cyber warfare," he said. "We see it almost everyday. To protect our assets, it's about learning from our history -- learning lessons that shape our strategy and help us to evolve our protection."

DeWalt's alarming call to arms during this second annual FOCUS 09 follows the latest data security report last week from the Anti-Phishing Working Group (APWG) which claimed the proliferation of malware and online scams of every iteration has made the Internet as dangerous as it has ever been.

A call for a universal architecture for security standards

During his portion of the joint address, DeWalt hammered home McAfee's view that any meaningful attempt to stem the tide of malware infiltrating both consumer and enterprise systems requires a concerted effort by security software vendors, chipmakers and telecommunications firms to create a governing model and universal architecture for applying security standards and technologies.

To this end, DeWalt reaffirmed his support for the Security Innovation Alliance (SIA), an organization he described as "the NATO" of security software, which brings together more than 20 different vendors for the purpose of sharing techniques and technologies to combat hackers and corporate subterfuge.

The mobility of data, everything from BlackBerrys to USB sticks, presents new and more complex security challenges, he said. McAfee and Adobe last week announced they will team up on a new integrated data loss prevention and digital rights management application set that exports a company's internal security standards and protocols to all data shared with third-party customers, partners and vendors.

"We don't have a common architecture to coordinate our fight to resolve these threats," he said. "We need to know if data is coming to us from a friend or foe from the IP side in real-time."

Whether DeWalt's presentation, complete with a slideshow that featured images of tanks, fighter jets and aircraft carriers alongside standard McAfee marketing and product data, was a tip of the cap to Powell's illustrious military career or merely a motivational tactic designed to fire up the attendees -- including more than 300 partner companies -- wasn't clear.

At one point, DeWalt acknowledged the less-than-subtle overtures, saying "I apologize for some of the military-type analogies" but "we've come a long way [from being just an antivirus software company]. We're more of a security company."

Next page: General Colin Powell on computer security issues