You are here: Home / CTO / One to watch regarding standards and security

One to watch regarding standards and security

November 16, 2008 By

In May 2008 I provided an overview of Standards Organizations CTOs Should Track.  Standards groups don’t change that fast, so the list is still pretty much ok, but I was very light on industry consortia.  Industry groups can play a large role in setting and implementing standards.  Industry reps send the majority of thinkers to standards bodies and industry management decides what standards to follow or ignore.  Tracking industry consortia can be very important to the CTO.

Since security is such a hot topic I wanted to point out one I think we should all watch.  The Industry Consortium for Advancement of Security on the Internet or ICASI.

ICASI was formed as a non-profit organization by a group of global IT leaders including Cisco, IBM, Intel, Juniper and Microsoft.  ICASI establishes trust mechanisms to allow those vendors to work very close together in a multi-lateral way to address international, multi-product threats.  Member companies can work in ways that protect sensitive information but enable effective collaboration.  Global leaders were sought for membership because of both the need to serve global customers and the challenges of defending against threats to global supply chains.

The ICASI is an informed group that is clearly aware of and supportive of many other efforts, like those sponsored by the White House and Department of Homeland Security.  For example, the ICASI cites reporting from National Security and Telecommunications Advisory Committee, like the NSTAC Report to the President on International Communications dated 16 August 2007 which highlights the need for a group like ICASI.

The ICASI vision:  Drive excellence and innovation in security response and share it with industry.

ICASI was formed by some of the greatest companies in the IT community.  As an optimist I believe they will help enhance security and look forward to their upcoming report on accomplishments.   But still, they are trying to tackle some very hard problems.  And they have not been providing information to the public on their internal dialog.  Should we be concerned that this was another good attempt that fell short of the vision?  Will the huge cuts in IT companies impact the people and resources provided to ICASI?  Stay tuned for more info…

Filed Under: CTO, Cyber Security Tagged With: , , , , , , , , , , , , , ,
  • http://www.shepherdspi.com lewis shepherd

    Bob – good call to highlight ICASI. At least from my little corner it appears to be gathering momentum, and won't be a victim of the economic times or of lack of industry attention. Nice column, I look forward to reading about other groups you cover.

  • http://profile.typekey.com/ctovision/ CTO Bob Gourley

    Lewis, Thanks much for the note. With your comment I feel even more optimistic than I did to begin with. We need some good news in this area of security and ICASI could be delivering some of that.
    Cheers,
    Bob

  • Joe Boutte

    The National Institute of Standards and Technology may have some information and standards useful to CTOs. See http://www.itl.nist.gov/VolStdsList.pdf and http://cio.nist.gov/itsd/

  • http://profile.typekey.com/ctovision/ CTO Bob Gourley

    Joe,
    You are very right, and that is much appreciated.
    Another favorite NIST activity is SCAP, at http://nvd.nist.gov/scap.cfm
    Cheers,
    Bob