None of the CISOs on the panel, which was moderated by Richard Stiennon, analyst from consultancy IT-Harvest, seemed to express much enthusiasm for the concept of big data security now being put forward by IBM, HP, and RSA that calls for analysis of gigantic amounts of data both traditional security and business, such as from human resources (HR).
"It's not about volumes of data," Tosheff remarked, though he noted that eBay's approach in the X.commerce division is to "use some HR and physical security data. We know that a person is currently out of the country," and geo-location data helps identify potential attacks. He adds a lot of defensive techniques his team has come up with are relatively home-grown and there are "beacons" in the network to monitor the presence of an invading attack to watch what happens before making a calculated response.
For now, it's not obvious why big data security should be getting a whole lot bigger.
Ellen Messmer is senior editor at Network World, an IDG publication and website, where she covers news and technology trends related to information security. Twitter: MessmerE. E-mail: email@example.com.
Read more about wide area network in Network World's Wide Area Network section.