Multi-function firewalls provider WatchGuard Technologies revealed today its annual security predictions for 2015. Along with its latest predictions, which examine the likelihood of common network security prophecies next year, the company's security research team also included five security trends not worth worrying about in 2015.
"As security professionals we spend a lot of our time looking for trouble and expecting the worse. And in 2014, there were lots of vulnerabilities and threats to be found such as Heartbleed, Regin and Operation Cleaver," said Corey Nachreiner, WatchGuard's director of security strategy and research. "With so much noise in the market, we wanted to help security professionals focus in on what matters the most - and what doesn't. Hence, five predictions you need to prepare for in 2015, and five you don't."
Top five things to not worry about:
- The Internet of Everything will not bring a rise of machines: Embedded computing devices (IoT or IoE) are everywhere and have security flaws. However, today's cyber criminals typically don't just hack for the heck of it. They need motive. There's not much value to having control of your watch or TV at this point, so we won't see hackers targeting them directly. For now.
- Cloud adoption will not continue its stratospheric climb in 2015: Between the "Snowden effect" and a number of cloud services leaking data, organizations will be more concerned with where they put sensitive information. This doesn't mean businesses will stop using the cloud where it makes sense. It just proves that we can't put everything in the cloud.
- Passwords will not die in 2015, or 2016, or 2017...: When bulk password thefts happen, the passwords are not at fault; rather the fault lies with that lack of security from the organization maintaining them. A better prediction for next year is that two factor authentication will become ubiquitous online and passwords will remain as one of those two factors.
- Secure design will not win over innovation: Humanity is known for diving into innovative technology without considering the consequences. In order to invent, and push boundaries, we must take risks. That means security will continue to take a back seat to innovation, and that security professionals will have the tough job of weighing the operational benefits of new technologies against their potential security risks.
- SDN will have security implications, but not for years: You won't have to worry about Software Defined Network (SDN) security next year, or anytime soon! Despite all the hyperbole, SDN is quite a ways from primetime adoption.
Sign up for Computerworld eNewsletters.