According to IBM Security X-Force (2021), server access was the third most common attack type in 2020. Nearly 36% of the server access attacks X-Force Incident Response observed in 2020 targeted the finance and insurance sector, with business services (14%), manufacturing (7%), and healthcare (7%) also getting hard hit.
The threats of server access attacks do not seem to go away or rather slow down, BUT they seem to get more complicated.
Are the current mitigation techniques for preventing server access attacks well-designed?
Besides that, Do you think adopting the Zero Trust security strategy will prevent this phenomenon? According to your experience. What are your thoughts on the matter?
Thank you for both the information and question Atiff Abdalla Mahmoud
I would agree with the sentiment that server attacks are getting more complicated making it a challenging task to put in place exhaustive mitigation and preventive measures and techniques. Having said that, Server attacks are attacks on endpoints or source points but the attack vectors are the network or the internet itself. In this case, I would suggest that Zero Trust might be the ultimate solution BUT it all depends on the level and standard of the implementation, the exhaustiveness of the policies governing access. To complement that ZERO Trust must be extended to endpoint monitoring and access control. Fortunately, all these are the attributes of ZT. How it is implemented is the challenge that will define effectiveness towards mitigating Server Attacks.
We are looking for new strategies considering a zero-trust approach. You may chack some of our works on "LCDA: Lightweight Continuous Device-to-Device Authentication for a Zero Trust Architecture (ZTA)"
https://ieeexplore.ieee.org/abstract/document/9343112
Article LCDA: Lightweight Continuous Device-to-Device Authentication...
Zero trust strategy, or policy, or concept, or architecture are already published and actively discussed. However, the reliably secure practical implementations require more variety of secure, usable, and cheap Identity and Access Management (IAM) technologies, which are a backbone of the Zero Trust approach to security.
https://www.techrepublic.com/article/zero-trust-security-a-cheat-sheet/
- Badges
- Science topic
- Similar topics
- Social Psychology
- Attitude