Sabanov Aleksei Gennadyevich

Biography

As of October 2011 - Deputy General Director of Aladdin R.D.

Quote

The Russian information security market is developing intensively, and all current threats are quickly reflected in adequate solutions to reduce the risks of their implementation. It interferes a little with the fact that the Russian information security market is completely opaque. There is not a single regulatory document obliging organizations and enterprises to disclose their losses from virus attacks or targeted attacks by cybercriminals. Individual reports of financial losses incurred due to information security incidents leaked to the media are usually accompanied by apologies from editorial offices in the next issue... This is probably why many of us use foreign analytical reports: various magic quadrants, assessments of the maturity of the market and individual companies, etc. At the same time, few people know that, for example, in Gartner, these estimates are often made only on the basis of content analysis of the media and contain systemic errors that generate inconsistencies and contradictions.

Of the threats, fraud is most likely to come first. This is especially clearly seen on the example of the banking sector. At the September conference InfoSecurity Russia, an estimate of losses from fraud in RBS of 2.5 billion euros in Russia was made.

Among other most current and large-scale information security threats, I note the large-scale use of the Internet, which is still far from safe for most enterprises and organizations.

However, without the Internet, companies have enough problems: they still need to restore and maintain order access to the corporate network and information resources. Personalizing access using an'electronic passport' - digital certificates - significantly reduces the risks of attacks, both external and internal.

The task of authenticated access is also relevant for fashionable (and in general, long-known and evolutionarily developing) cloud computing. The trouble is that today in the clouds it is very difficult to "measure" security, and therefore it is difficult to really assess risks.

As for the "national features" of information security threats, today in this sense Russia, it seems to me, does not differ from the rest of the world.