Tag Archives: Convergence

BlackBerry Cylance outlines cyber security predictions for 2020

Josh Lemos, vice-president of research and intelligence at BlackBerry Cylance, has put forward some predictions on cyber security trends for 2020 that will impact Governments and companies across a variety of industry sectors.

(1) Uncommon attack techniques will emerge in common software

Steganography, the process of hiding files in a different format, will grow in popularity as online blogs make it possible for threat actors to grasp the technique. Recent research at BlackBerry found malicious payloads residing in WAV audio files, which have been used for decades and categorised as benign.

Businesses will begin to recalibrate how legacy software is defined and treated and effectively invest in operational security around them. Companies will look for ways in which to secure less commonly weaponised file formats, like JPEG, PNG and GIF, etc without hindering users as they navigate the modern computing platforms.

BlackBerryCylance2020Predictions

(2) Changing network topologies challenge traditional assumptions and require new security models

Network-based threats that can compromise the availability and integrity of 5G networks will push Governments and enterprises alike to adopt cyber security strategies as they implement the 5G spectrum. As cities, towns and Government agencies continue to overhaul their networks, sophisticated attackers will begin to tap into software vulnerabilities as the expansion of bandwidth that 5G requires inevitably creates a larger attack surface.

Governments and enterprises will need to retool their network, device and application security. We will see many lean towards a zero-trust approach for identity and authorisation on a 5G network.

Threat detection and threat intelligence will need to be driven by Artificial Intelligence and machine learning to keep up.

(3) 2020 will see more cyber-physical convergence

As all sectors increasingly rely on smart technology to operate and function, the gap between the cyber and the physical will officially converge. This is evident given the recent software bug in an Ohio power plant that affected hospitals, police departments, subway systems and more in both the US and Canada.

Attacks on Internet of Things (IoT) devices will have a domino effect and leaders will be challenged to think of unified cyber-physical security in a hybrid threat landscape.

Cyber security will begin to be built into advanced technologies by design to keep pace with the speed of IoT convergence and the vulnerabilities that come with it. 

(4) State and state-sponsored cyber groups alike are the new proxy for international relations

Cyber espionage has been going on since the introduction of the Internet, with Russia, China, Iran and North Korea seen as major players. In 2020, we will see a new set of countries using the same tactics, techniques and procedures as these superpowers operate against rivals both inside and outside of national borders.

Mobile cyber espionage will also become a more common threat vector as mobile users are a significant attack vector for organisations that allow employees to use personal devices on company networks.

We will see threat actors perform cross-platform campaigns that leverage both mobile and traditional desktop malware. Recent research discovered nation state-based mobile cyber espionage activity across ‘The Big 4’, as well as in Vietnam. There’s likely to be more attacks coming in the future. This will create more complexity for Governments and enterprises as they try to attribute these attacks, with more actors and more endpoints in play at a larger scale.

Leave a comment

Filed under Risk Xtra

IHS Research Note: $120 billion physical security industry continues to grow

In the latest Research Note from IHS, David Green (senior analyst for video surveillance and security services) provides a detailed and timely appraisal of the overall physical security equipment and services market.

The IHS report entitled ‘Physical Security Equipment and Services: 2014’ combines annual product revenues for the following equipment types: video surveillance, access control, intruder alarms, perimeter security, entrance control (pedestrian and vehicle), consumer video surveillance, thermal cameras and wireless infrastructure as well as service revenues assigned to Video Surveillance as a Service (VSaaS), Access Control as a Service (ACaaS), remote monitoring services and security systems integration.

According to IHS, strong market demand in an increasingly competitive physical security equipment and services industry is still driving overall revenue growth in all global regions.

Key findings of the latest IHS report are as follows:
• The market reached $120 billion in revenue during 2013, representing a 10.8% increase in market size compared to 2012
• The USA remains the largest country for spend with over $6.5 billion allocated solely on equipment, although China is edging closer to the Number One ranking each year
• One in every $5 spent on physical security equipment in Asia is for a Government building, not including other state-led facilities and installations such as airports or infrastructure
• On a global basis, no single company holds a market share greater than 5% for the physical security equipment and services sector

As global economic conditions continue to improve and budgets slowly increase, the physical security industry continues to perform strongly across the world. Growth in the number of projects employing different types of physical security equipment as a single solution is also increasing, often managed through the same platform.

Strong market demand in an increasingly competitive physical security equipment and services industry is still driving overall revenue growth in all global regions

Strong market demand in an increasingly competitive physical security equipment and services industry is still driving overall revenue growth in all global regions

Regional variations to be observed

Service-based offerings are proving popular in the American market as manufacturers and service providers look to bridge the gap between consumer-style business models and professional standard services.

Markets such as VSaaS or ACaaS only account for a small proportion of total revenues right now, but are expected to see some of the highest growth rates over the next five years.

IHS already sees this convergence in the supply market as well, with telecommunications companies now taking a greater interest in the security sector.

The EMEA market is much more evenly spread across all equipment and service types although it shares more similarities with the American market than with Asia. Equipment spending is particularly spread across different technology types. For example, entrance control accounts for almost 25% of all physical security equipment revenue which is higher than for any other region.

Asia remains the fastest-growing market in the world and has very different end user patterns and requirements. The equipment market in particular exhibits a strong focus on video surveillance, wherein 17% of all revenue spent on physical security equipment and services in China during 2013 was on just that (and often originating through larger Government-funded schemes or projects).

Recognising a competitive environment

While global revenues for physical security equipment and services continue to increase, any expectations that the security industry supply market would start to consolidate appear premature.

The Top 15 manufacturers and service providers accounted for only 22% of the global market in 2013 (a decrease of 3% on just 12 months earlier). Furthermore, no single company can boast a market share above 5%, in turn proving the fragmented nature of this growing industry and the high levels of competition.

One developing trend in this competitive environment is the rise of Asian-based manufacturers gaining market share outside of their domestic markets. In 2013, four of the Top 10 equipment manufacturers globally were based in Asia.

Companies that have performed strongly in their domestic market and have improved product quality are now starting to expand into new markets. This is a trend that IHS expects to continue and one which will drive increased price pressure in the American and EMEA markets over the next few years.

However, any price pressures are not currently strong enough to outweigh the increases in general market demand. This means that the overall market for physical security equipment and services is expected to continue with strong growth for the foreseeable future.

Leave a comment

Filed under Risk UK News

IHS Research Note: ‘PSIM software continues to see strong growth despite increased competition’

In the latest Research Note from IHS, senior analyst Paul Bremner discusses the Physical Security Information Management (PSIM) software market.

A new report from IHS reveals that the world market for PSIM (Physical Security Information Management) software is estimated to have been worth $160.3 million in 2013.

While being a small segment of the larger security and fire market, the PSIM market continues to enjoy 20% and higher growth rates, and will do so until at least 2018. This growth is being driven in part by end users deploying PSIM software platforms as a tool to enforce compliance of both internal policies and external legislative requirements.

Despite these growth rates, confusion surrounding what constitutes PSIM software remains. Competing products such as command and control platforms, advanced video management software and security integration platforms have muddied the water as their capabilities and functionality have expanded into what was once considered PSIM’s territory of situational awareness and situation management.

Connectivity and integration aspect eroded

In previous years, one of the key selling points for PSIM platforms was their ability to connect and integrate multiple disparate systems, both security and non-security. It is this connectivity and integration aspect to PSIM which has been eroded over the past two years, with many other products being able to offer various integrations to expand their software’s reach.

PSIM software has thus had to shift its USP away from this integration aspect. Customers that are buying PSIM now are really coming with a top-down view, with a need to improve their security operations in a cost-effective, operationally efficient way while improving the overall security of the environment in which they are working. This is where the PSIM value proposition lies.

That said, the market has grown in line with expectations from the previous edition of the report, with the market being $7.5 million larger in 2013 than previously expected.

However, longer-term growth will be muted compared with previous expectations. The market’s long-term growth is limited by competing products successfully being deployed in the mid-tier, a market that has historically been out of reach for the high-end PSIM software platforms due to their high price tag.

Leave a comment

Filed under IFSECGlobal.com News

Xtralis Everywhere portfolio of converged safety and security solutions launched to market

Dignitaries from the City of London Fire Brigade, the US Homeland Security Investigation (HSI) Directorate and the Bank of England presented their thoughts at a gala launch event held in central London.

Xtralis has announced its next generation Xtralis Everywhere (Xtralis-E) portfolio of converged safety and security solutions. This innovative portfolio provides early, reliable detection and remote visual verification of smoke, gas and perimeter threats for businesses, Governments and critical infrastructures.

Among the next generation solutions released are VESDA-E and VESDA Laser Quantum (VLQ) aspirating smoke detectors (ASD) and the ADPRO FastTrace 2E Remotely Managed Multi-Service Gateway (RMG) security platform.

The new safety and security platforms can be enhanced with seamless hardware expansion modules and innovative, remotely downloadable software analytics known as Xapps.

Using Xtralis Xchange (an online licensing portal with a downloadable PC application), Xapps can be quickly deployed to remotely manage, configure and exchange licenses to Xtralis platforms.

In addition, Xtralis has revealed its comprehensive safety and security convergence strategy using these platforms to achieve 100% detection with 0% false alarm rates – a bold goal previously thought to be unattainable.

VESDA-E: 15 times greater sensitivity to smoke

VESDA-E is the next generation of the VESDA ASD system. While the current generation VESDA was considered the benchmark for such systems, VESDA-E surpasses VESDA with 15 times greater sensitivity to smoke and double the longevity while maintaining sensitivity over its lifetime, all with 4% less power consumption.

Xtralis will continue to offer VESDA as a Best in Class ASD for a wide variety of applications while initially focusing VESDA-E on the retail, healthcare, education and office building segments which comprise a large cross-section of the fire prevention market.

VESDA-E is the next generation of the VESDA ASD system

VESDA-E is the next generation of the VESDA ASD system

VESDA-E also delivers a first in aspirating smoke detection: pinpoint ASD addressability at up to 120 holes. This unprecedented capability brings the early, reliable detection of VESDA to mainstream applications with a lower total cost of ownership advantage.

VESDA-E can quickly add monitoring, servicing and detection capabilities with the addition of bolt-on hardware modules called VESDA Stax, including a version of its award-winning ECO gas detection solution. The Stax do not require re-engineering of the smoke detection pipe network.

VESDA-E brings “superior set-up, configuration, monitoring and connectivity options” and features “unique, innovative and downloadable Xapp software applications” which enable new, on-demand monitoring services.

Available immediately are WireTrace Xapp (designed to isolate threats from overheating cables and electrical wires), DieselTrace Xapp (for monitoring diesel smoke trends to enable on-demand ventilation systems) and the DustTrace Xapp (for monitoring dust conditions and enabling corrective response to take place with ventilation).

Monitoring of the VESDA-E detector is available on popular tablets using an iVESDA application.

ADPRO FastTrace 2E: video recording

The ADPRO FastTrace 2E is a four-to-20-channel next generation version of the award-winning FastTrace 2, a Remotely Managed Multi-Service Gateway platform for video recording, bi-directional audio for deterrence, transmission over any network and remotely downloadable software analytics to eliminate threats to a facility through automatic visual detection and verification.

The FastTrace 2E provides “superior detection capabilities” and is up to 86% lower in total cost of ownership than solutions combining discrete recording, transmission (for remote access over any network) and analytics capabilities.

The ADPRO FastTrace 2E is a four-to-20-channel next generation version of the award-winning FastTrace 2

The ADPRO FastTrace 2E is a four-to-20-channel next generation version of the award-winning FastTrace 2

The ADPRO FastTrace 2E is packed with pay-as-you-grow features that can easily be upgraded ‘in-the-field’ with minimum effort, and provides significant installation and operational cost savings versus more traditional deployment methods.

ADPRO FastTrace 2E allows end users to add video channels or migrate between analogue and IP on-site with an upgrade package. End users are able to remotely download applications such as IntrusionTrace (an intrusion detection analytic that is i-LIDS® approved as a primary detection system for operational alert use in sterile zone monitoring applications), LoiterTrace ( a detection analytic for unauthorised loitering in indoor and outdoor applications) and SmokeTrace, which allows monitoring sites to visually verify fire threats before calling the fire brigade, in turn reducing false alarms and significantly lowering the large cost of responding to false fire alarms.

VESDA Laser Quantum (VLQ) brings VESDA-quality value and very early warning (VEW) to compact areas where VEW was previously unaffordable

VESDA Laser Quantum (VLQ) brings VESDA-quality value and very early warning (VEW) to compact areas where VEW was previously unaffordable

VESDA Laser Quantum (VLQ) brings VESDA-quality value and very early warning (VEW) to compact areas where VEW was previously unaffordable. VLQ offers 4 Class-A VEW holes and quick and easy installation and commissioning, covering 1,002 metres (1,000 sq ft).

Target applications include remote telecom exchanges, base stations, portable data centres and other compact critical infrastructure applications.

Converged safety and security solution

Xtralis also unveiled its first converged safety and security solution. Designated SmokeTrace, it’s a FastTrace 2E video analytic to provide remote visual verification of smoke threats and eliminate false alarms while providing real-time situational awareness to improve first responder efficiency and effectiveness.

SmokeTrace PLUS uses the Xtralis OSID smoke detector to alarm on real smoke threats in existing installations where video cameras and traditional smoke detectors are already installed, providing certain visual verification and real-time situational awareness of a smoke threat.

When used with VESDA-E, SmokeTrace allows real-time situational awareness to complement VESDA-E’s addressable pinpoint location identification.

More information on these solutions is available at: http://www.xtralis.com/xtralis-e

Leave a comment

Filed under IFSECGlobal.com News

Learn about converged security risks at The Security Institute’s Masterclass

The Security Institute’s next Masterclass will focus on the topic of converged security risk, and explore various high-impact scenarios that can result from advanced and persistent threats.

Taking place between 10.00 am and 4.00 pm on Tuesday 24 September at The Crystal Building in London (home of Siemens), over the duration of the day dedicated speakers will provide anecdotal evidence about priorities for security measures and approaches to dealing with converged threats.

Confirmed speakers include Mike O’Neill CSyP, Dan Solomon, Azeem Aleem and Peter Fraser-Hopewell.

Mike O'Neill CSyP: key speaker at The Security Institute's Masterclass on convergence

Mike O’Neill CSyP: key speaker at The Security Institute’s Masterclass on convergence

They will illustrate a range of scenarios that best demonstrate converged vulnerabilities or attacks. In a plenary session, attendees will be asked to tackle the implications for security and planning.

The Security Institute’s latest Masterclass will conclude with an interactive Q&A session, in particular designed to consider Best Practice in managing/organising a converged security set-up for both preventative and reactive functions, doctrinal concepts that should be adopted and a methodology for the conduct of appropriate internal security.

Azeem Aleem: expert on cyber threats and defending against them

Azeem Aleem: expert on cyber threats and defending against them

Book your place now

Cost of attendance is £95 for Institute members and £145 non-members.

Date: 24.9.2013
Venue: The Crystal, 1 Siemens, Brothers Way, Royal Victoria Docks, London E16 1AD

Opened in the autumn of 2012, Siemens’ £30 million centre for urban sustainability is located in the Royal Victoria Docks. The Crystal is a striking glass-faceted structure built as a permanent showcase for sustainable technologies and is an excellent conference and seminar venue.

For further information on The Security Institute’s Masterclass contact Vickie Bailiss (events co-ordinator at The Security Institute) on (tel) 08453 707717 or via e-mail: vickie@security-institute.org

To book your place online click here

Leave a comment

Filed under IFSECGlobal.com News