Security Foresights for the New Year

Security Foresights for the New Year

Data is becoming more digital and systems are becoming more integrated

It is hard to type in 2-0-2-0, but the reality is 2020 is finally here. Once upon a time, this was the year when cars could fly, human immune systems healed themselves and cops could stop a crime dead in its tracks. While some of these things are still more of a dream than a reality, the last one is becoming more viable every day.

Today, we can safely say that data is becoming more digital, systems are becoming more integrated and security is becoming more predictive. So, while we may not have flying cars, we have come a long way. And we are only going to get smarter and more innovative from here. Below are the top trends we might see in 2020, and beyond.

Six Trends for 2020

Zero-trust environments converge. Cybersecurity is teaching us the enemy is most likely already inside your organization; however, physical security is just beginning our digital transformation and is steadily adopting this zero-trust mentality. The challenge: finding physical security tools that can secure your facility the same way IT secures your network. The good news is we do not have to pave a new path. Physical security can learn from mistakes witnessed in InfoSec, as well as adopt established best practices to ensure this digital transformation is simple and secure.

Risk-adaptive technologies have started to emerge in the physical security market. Access control is becoming aware of individual behavior and intelligent enough to make sure staff does not enter risky environments. Unification platforms are not just looking at camera feeds, but are integrating non-traditional information feeds, such as operational technology, network security and even social media posts. And analytics are becoming predictive rather than forensic. As technologies and methodologies converge, security postures will become more connected and proactive, making our overall society safer. Security directors – and citizens alike – can have peace of mind, even in the modern, low-trust environments of a dynamic enterprise.

Search for more meaning. Data without context is just noise. Data will continue to explode, requiring greater context and intelligence to understand, reflect and improve upon current- and -historical trends. This will be supported by increasing reliance on AI and neural networks to predict behaviors, prevent security problems, and increase efficiencies and effectiveness of physical and cybersecurity teams for higher-level problem solving and purpose.

Rather than an AI revolution, we will see an AI evolution. In the US, AI has increased worker productivity while contributing to a growing number of new job and economic growth. Together, new technologies, data, AI and robotics will work together to significantly improve our output and lifestyle by supplementing where we are weak and complementing where we are strong.

Focus on governance. Permission is one thing, governance is another. Security has relied on static-access control to ensure staff can enter the correct facilities as needed. By giving someone a credential, you are giving them your trust. But how do you verify that trust is not being abused?

The answer is new to physical security, but an accepted one in IT: governance.

Governance and compliance will soon begin creeping into physical security because of the impact of digital transformation. Regulations for handling sensitive, Personally Identifiable Information (PII) data will come into focus, offering a system of checks and balances on data ownership, proper segmentation of data and safe handling of physical security data.

Conditional privacy concept. Privacy is paramount until safety is at risk. Security and privacy are two sides of the same coin. And in the past, these have been mutually exclusive - meaning that we will keep the information secured - but that data could be relevant to keeping someone physically safe. Furthermore, as a member of the SIA Data Privacy advisory board, I can assure you security practitioners keep this top of mind.

But rather than the standard privacy “or” security, can we use “and” to have our cake and eat it too? Systems that are aware of an operation’s current risk status can help eliminate this false ultimatum and better balance privacy and safety concerns based on the current environment. You can loosely think of this as ‘conditional privacy’ or ‘safety-adjusted privacy.’ This will help improve physical security, while maintaining data privacy regulations.

Increased automation. Automation can sound scary. But automated safety sounds ok, right? Robots are great at supplementing where humans are weak, and in physical security there are plenty of applications where we are physically or logically vulnerable. Physical security has lagged behind IT and the rest of the enterprise when it comes to tools, but 2020 will be the year when practitioners begin to trust some of these newer technologies that allow the automation of security monitoring, threat detection, guard tours and even incident response.

Automation will allow operators to go beyond the antiquated and reactive, “watch everything and do something” approach into a focused, analytical mindset with technology that tells operators when and where human attention is needed. Physical security will rely on automation for improved detection and better responses. We are already seeing robots used in active shooter situations to save the lives of cops, and can expect new use cases in robotics to allow us to perform higher-order work and do our jobs more strategically.

Smarter, safer cities and buildings. Cities and buildings around the world will become increasingly sophisticated, automated and coordinated through more digital transformation; enabling safer, cleaner, healthier and more environmentally efficient places to live and work. Multi-metrics to analyze all of those IoT devices and sensors will become more integrated into security systems for buildings and high-traffic areas to more intelligently protect, predict, and understand human patterns and behaviors in the environment. The use of biometrics will also increase, including more widespread adoption of facial recognition technology and other “privacy-friendly” forms data, such as gait analysis that can identify unique individuals.

Improved authorization models for zero-trust environments, physical access governance, increased intelligence and further automation are paving the future for a smarter, more private and secure society. The future in 2020 and beyond looks brighter, safer and more secure thanks to rapid advancements in technology, and our willingness to embrace the changes. The vision is clear: 2020 will be the year of proactive security postures.

This article originally appeared in the November/December 2019 issue of Security Today.

Featured

  • Evolving Cybersecurity Strategies: Uniting Human Risk Management and Security Awareness Training

    Organizations are increasingly turning their attention to human-focused security approaches, as two out of three (68%) cybersecurity incidents involve people. Threat actors are shifting from targeting networks and systems to hacking humans via social engineering methods, living off human errors as their most prevalent attack vector. Whether manipulated or not, human cyber behavior is leveraged to gain backdoor access into systems. This mainly results from a lack of employee training and awareness about evolving attack techniques employed by malign actors. Read Now

  • Report: 1 in 3 Easily Exploitable Vulnerabilities Found on Cloud Assets

    CyCognito recently released new research highlighting critical security vulnerabilities across cloud-hosted assets, revealing that one in three easily exploitable vulnerabilities or misconfigurations are found on cloud assets. As organizations increasingly shift to multi-cloud strategies, the findings underscore significant security gaps that could provide attackers with potential footholds into networks. Read Now

  • Built for Today, Ready for Tomorrow

    Selecting the right VMS is critical for any organization that depends on video surveillance to ensure safety, security and operational efficiency. While many organizations focus on immediate needs such as budget and deployment size, let us review some of the long-term considerations that can significantly impact a VMS's utility and flexibility. Read Now

  • Paving the Way to Smart Buildings

    In today's rapidly evolving security landscape, the convergence of on-prem, edge and cloud technologies are critical. The physical security landscape is undergoing a profound transformation, driven by the rapid digitalization of buildings and the evolving needs of modern organizations. As the buildings sector pivots towards smart, AI and data-driven operations, the integration of both edge and cloud technology has become crucial. Read Now

  • The Cybersecurity Time Bomb

    If you work in physical security, you have probably seen it: a camera, access control system, or intrusion detection device installed years ago, humming along without a single update. It is a common scenario that security professionals have come to accept as "normal." But here is the reality: this mindset is actively putting organizations at risk. Read Now

New Products

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.