Security: Built-In or Bolt On?

 Bill Anderson
Information Security Specialist
Interhack Corporation


Security concerns surround information technology today. In the face of the threats facing information, technologists are often driven to mitigate weaknesses in their systems.

The end result is that IT departments are driven to build things and then “to add security” at the end—if there's time and money left, which is hardly typical. How could security needs be addressed effectively?

Using examples that draw on Interhack's forensic computing and information assurance practices, Bill Anderson shows just how expensive bolt-on solutions can be.

Two variations of this talk were delivered. The first was at the October 24, 2005 meeting of Columbus Section of IEEE GOLD. The second was at an October 27, 2005 seminar presented by XLNsystems in Columbus. PDF slides are available.