Scusate la (mancanza di) modestia, ma saranno almeno due anni che
"sto annunciando", su canali Internet come questo o alle conferenze a cui
partecipo come relatore, un evento di questa portata!
--vince
> CRYPTO-GRAM
>
> July 15, 2000
>
> by Bruce Schneier
> Founder and CTO
> Counterpane Internet Security, Inc.
> schn...@counterpane.com
> http://www.counterpane.com
> Counterpane Internet Security News
[...]
>Counterpane is pleased to announce a new insurance tie-in with Lloyd's of
>London. This is an exclusive offering for Counterpane customers: if
>Counterpane monitors your network, then you can purchase this
>insurance. For the first time ever, organizations can buy insurance
>against hacking without a security audit and without regard to the
>particular security products they use. Organizations can also buy, for
>the first time ever, warranty coverage that protects their customers
>against loss of income and data.
>
>Computer security has always been sold as "threat
>prevention." Encryption, firewalls, anti-virus, PKI...these are all
>technologies that prevent particular threats. Threat prevention is a
>cost, and if an organization doesn't understand the threats, then it might
>not be willing to pay for prevention. Real business security, on the
>other hand, is about risk management. Risk management is not a cost, it's
>a way to make money. If one organization can manage its risk better than
>another, then it will be more profitable. Smart companies embrace risk,
>look for more of it, and figure out how to do business in the face of it.
>
>Looking at computer security as a risk management tool, there are many
>more options than threat prevention. There is detection and response:
>managing risk by finding attacks in process and stopping them. And there
>is insurance: packaging risk and selling it to someone else. These are
>the future of computer security, not prophylactic technologies that
>promise a magical security blanket.
>
> From the beginning, I have maintained that Counterpane Internet Security
> will address the real problems in network security. I have never
> believed that simply installing products will ever protect you, and have
> focused on the process of security. One part of that process is Managed
> Security Monitoring, which is what Counterpane's business is. The other
> part is insurance. Now Counterpane customers, and only Counterpane
> customers, have access to both.
>
>Summary of the offering:
>
>Counterpane Internet Security Inc., Lloyd's of London, Frank Crystal &
>Co., and SafeOnline Ltd. have jointly developed a first-of-its-kind,
>comprehensive risk management insurance solution specifically targeted to
>meet the needs of today's e-businesses.
>
>Up to $100 million in protection available.
>
>Two products available:
>
> 1. Internet Asset and Income Protection Coverage provides
> insurance for Counterpane's Managed Security Monitoring customers who
> incur a loss of or damage to information assets resulting from a breach
> of security or technology failure. Also covers business interruption due
> to loss of use due to a breach.
>
> 2. Internet Asset and Income Protection Warranty Plan for
> ISPs/ASPs that utilize Counterpane's Managed Security Monitoring
> services; this is a turnkey, insurance-backed warranty plan to extend the
> Internet Asset and Income Protection to their customers.
>
>These insurance products are sold through authorized insurance brokers.
>
>Quick Summary:
><http://www.counterpane.com/pr-lloydssl.html>
>
>Press Release:
><http://www.counterpane.com/pr-lloyds.html>
>
>Q&A:
><http://www.counterpane.com/pr-lloydsqa.html>
>
>White Paper describing the insurance offering and its context:
><http://www.counterpane.com/pr-lloydswp.html>
>
>Press Coverage:
><http://news.cnet.com/news//0-1005-200-2232221.html?tag=st.cn.sr.ne.1>
><http://www.internetwk.com/story/INW20000710S0001>
><http://www.computerworld.com/cwi/story/0,1199,NAV47_STO46992,00.html?am>
><http://www.zdnet.com/zdnn/stories/news/0,4586,2600511,00.html>
><http://www.crn.com/dailies/digest/dailyarchives.asp?ArticleID=18243>
><http://slashdot.org/articles/00/07/10/139201.shtml>