Published at LXer:
Human error and evolving phishing attacks will compel organizations to tighten control over application access, not just user access. Guardian Digital, the open source security pioneer, forecasts an increased need for comprehensive control over Internet and employee resources with 'least privilege' engineering in 2008. "Most vendors don't stress least privilege enough in their development architecture, especially with the increasing threats from human error and employee liability" says CEO Dave Wreski. "Security in 2007 has shown just how effective attackers can be at gaining authorized access to corporate resources. One of the best ways to protect against this is to lock down application access, not just user access."
Read More...