IBM building security into cloud fabric

IBM executives said this week that the company is looking to many of its existing tools, from the Tivoli management system to Cognos business intelligence software, to secure private and IBM-hosted hybrid clouds as customers migrate to these new computing setups.

Steve Robinson, general manager for IBM security solutions, told Network World during this week's IBM Innovate Conference for software developers that enterprises using clouds should be able to establish means of authentication, provisioning of resources and de-provisioning of them in an automated way.

IBM's Tivoli management platform is being updated for role-based controls in the cloud and will be out later this year.

"Identity management is a foundation piece," Robinson said.

FREEBIE: IBM rolls out cloud software development tool

IBM's research division is working on a real-time monitoring system in which it would be possible to correlate identity with any activity on the network, such as data access and download, to immediately determine security and policy violations.

"Could you detect an upset employee who comes in on a Saturday and walks out with 4GB of data?" Robinson asked, pointing out that IBM's goal with the project is to have a way to detect, store and analyze every network activity in order to determine security and policy violations on a real-time basis.

This would be done by bringing together functionality in IBM's InfoSphere Stream data analysis tool, IBM Cognos business intelligence and IBM SPSS, the predictive analytics software that can be used for fraud control. No timetable was announced for rollout.

Overall, IBM's goal is to "build security into the fabric of the cloud" to overcome security concerns customers have about cloud computing in virtualized environments, said Harold Moss, IBM CTO for cloud security strategy, during a panel discussion at Innovate. "The cloud is potentially more secure" than traditional networks, he said.

While IBM is supporting encryption and ways to audit for compliance purposes, the company has also started investing in technology to keep track of virtual-machine images (IBM states it is "hypervisor-agnostic" in terms of the virtualization platform used).

IBM has begun cataloging virtual-machine images held in its cloud on behalf of customers and has started to monitor the VMs to detect any unexpected movement across the network, said Scott Hebner, vice president of global marketing at IBM's Tivoli division.

Beyond the cloud

But despite IBM's quest to entice its customers into the hybrid and private cloud, some customers find their days filled with down-to-earth struggles related to security in older Web applications.

"The executives know we have a lot of vulnerabilities right now. They want to see them going down," said Daniel Harvey, application security developer for Clayton Homes, the manufactured housing company wholly owned by Berkshire Hathaway. Harvey spoke during a presentation at Innovate about the effort to stamp out Web application bugs.

Clayton Homes, with 12,000 employees worldwide, has about 30 Web developers and 30 Web applications used internally and facing the Internet. Not long ago it was discovered how riddled with security holes many of these Web applications were: Older legacy code of a decade or more was in bad shape and it was clear that software developers were failing to follow safe coding practices.

The company found out about the Web application vulnerabilities during an audit by Ernst & Young. One step that was taken to address the problem was a decision to buy the IBM AppScan tool to get developers to check their code for security vulnerabilities before allowing it into production. But AppScan, in use for about a month, discovered so many bugs that need to be fixed, that Clayton Homes decided it can't address all of them at once.

Instead, the company at the present time is striving for a "threshold of vulnerabilities" to keep holes under an undisclosed number. Harvey added: "It hasn't been that easy to get all the developers to buy in." But he said AppScan, which has been made mandatory, is helping them write more secure code. "The old code is the underlying problem," Harvey said. The issue now has oversight from business executives and the company has beefed up internal networking monitoring as well.

Read more about wide area network in Network World's Wide Area Network section.

Join the PC World newsletter!

Error: Please check your email address.

Tags cognosConfiguration / maintenanceIBMsecurityhardware systemsData Centercloud computinginternetvirtualizationIBM cloud security

Our Back to Business guide highlights the best products for you to boost your productivity at home, on the road, at the office, or in the classroom.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Ellen Messmer

Network World
Show Comments

Most Popular Reviews

Latest News Articles

Resources

PCW Evaluation Team

Azadeh Williams

HP OfficeJet Pro 8730

A smarter way to print for busy small business owners, combining speedy printing with scanning and copying, making it easier to produce high quality documents and images at a touch of a button.

Andrew Grant

HP OfficeJet Pro 8730

I've had a multifunction printer in the office going on 10 years now. It was a neat bit of kit back in the day -- print, copy, scan, fax -- when printing over WiFi felt a bit like magic. It’s seen better days though and an upgrade’s well overdue. This HP OfficeJet Pro 8730 looks like it ticks all the same boxes: print, copy, scan, and fax. (Really? Does anyone fax anything any more? I guess it's good to know the facility’s there, just in case.) Printing over WiFi is more-or- less standard these days.

Ed Dawson

HP OfficeJet Pro 8730

As a freelance writer who is always on the go, I like my technology to be both efficient and effective so I can do my job well. The HP OfficeJet Pro 8730 Inkjet Printer ticks all the boxes in terms of form factor, performance and user interface.

Michael Hargreaves

Windows 10 for Business / Dell XPS 13

I’d happily recommend this touchscreen laptop and Windows 10 as a great way to get serious work done at a desk or on the road.

Aysha Strobbe

Windows 10 / HP Spectre x360

Ultimately, I think the Windows 10 environment is excellent for me as it caters for so many different uses. The inclusion of the Xbox app is also great for when you need some downtime too!

Mark Escubio

Windows 10 / Lenovo Yoga 910

For me, the Xbox Play Anywhere is a great new feature as it allows you to play your current Xbox games with higher resolutions and better graphics without forking out extra cash for another copy. Although available titles are still scarce, but I’m sure it will grow in time.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?