subject: Industry Watch: How to control our information security industry? - Information Security - Security Industry [print this page] Industry Watch: How to control our information security industry? - Information Security - Security Industry
HC Network Security June 2009, the United States announced the establishment of "Network Warfare Command" in order to improve the U.S. response to the advanced Electronic Equipment capacity. Information security has become the protection of national political, economic and social stability, an important force. However, there are still many of our information systems dependent on foreign IT Products, to ensure government and corporate security and stability of critical business systems, information security industry has become to face challenges.
Security needs increase, the information security industry, increasing the voice of the strong. However, the formation and development industry can not be separated Market And user support, has experienced 10 years of development of China's information security market, though already beginning to take shape, but stressed that "independent, controllable," Today, our information security industry can only say that "the revolution has not yet succeeded."
As an information security practitioners, the author experienced users, security vendors and third-party media and many other roles, for Chinese information security industry development takes quite a lot of sense. With a renowned information security Company President has pointed out that "security industry's growth, first of all need the guidance of the national strategy, followed by the information security industry in China need healthy and stable development Environment . "This shows that the national policy and market environment, the security industry, has restricted the development of our information security industry's most important and the most direct factor.
2008 Beijing Olympics Successfully holding the state to information security to complete a comprehensive and objective thinking. In order to boost the rapid development of information security industry to protect critical information systems security and stability, several ministries have accelerated the level of protection, parental controls and a variety of Legislation The floor. However, the changes are not everything in impeccable, .
Present, the information security industry, our biggest challenge remains focused on the "management", in addition to the traditional "kung-pao chicken" four management departments, password do, NDRC, Ministry of Science, , Ministry of Industry and also became involved in information security. Between the responsibilities of management and the management rights complex and ambiguous, making the information security industry is difficult to be rational and effective national policy guidance.
A time many vendors and users committed confused, "independent, controllable," how to do it? Innovative how to do? A domestic security company, said vice president of emotion, "innovation" Everyone is mentioned, but the criteria for innovation? Is a new product, a updata, or in the core technical innovation? Now the domestic industry, academia, research status, the rush to the safety of the product market companies, it is hard to innovate the real essence. Concept does not change the state policy is not adjusted, effective and innovative and "independent, controllable" are difficult to implement.
Troubled veterans of the problem, so I could not help but ponder. Traced hinder the development of security industry need three major problems involved in information security of each side thought.
First of all, poorly defined, difficult to become an effective system of management
As "independent, controllable and the definition of" not clear, the information security industry department to "independent, controllable," the concept of understanding uneven. Management of multi-sectoral cross the surface, but in reality because the department standards, regulations and requirements of the different effects of serious shortcomings. Not form an effective system of management, innovation will be hampered. And innovative businesses more directly affect the internal security of capital, technology, competition and industry access levels, and many other issues. I just want to say, when the safety is buck-passing phenomenon, a more serious security risks in fact have been quietly coming.
Second, the lack of clear standards development system
Standard is the inevitable result of the development of most industries, however, not clear on goal difficult to form complete industry standards. Standard front of stress management, the standard behind the emphasis is on technology, as "independent, controllable" not clear, the standard system will be difficult to bind the whole industry. For many businesses seek innovative security, innovative products out of the lack of a standard than will no doubt result in a waste of money and manpower to stifle enterprise and creative energy.
Third, security is difficult to guarantee the sustainable development of enterprises
Is the so-called "horse to the water is not sweet," the development of security industry will follow its own law of development. As the security industry, specificity, sensitivity, capital investment is relatively conservative. Serve the fact that for many of these high-profile appearance of the security company, quietly quit soon. Ironically, these companies do not act and act calm and quite similar to the stock investment, these are the expected lack of vision and strategy caused.
Thus, whether the government or state enterprises in response to "independent, controllable" policy must adhere to strict planning and expectations, including technical, marketing, access policies and so on. Only the security company the real reality, starting from requirements, be possible to achieve sustainable development of enterprises.
Throughout the past few years the information security industry trends, the domestic information security market shows the potential of people mixed. According to the latest IDC, "China's IT security hardware market analysis and forecasting," show that in 2008 China's IT hardware security market size is only 400 million 8 million dollars. Less than 50 billion yuan of market share, not only a far cry from other industries, even if some of the security companies and foreign M & A events than seems rather meager. But it also sends a positive signal that China's Information Security industry will usher in a golden age of rapid development.
Golden period in the information security industry before the arrival, we ask whether government and business ready? No core technology innovation and reserves, "autonomy" can not guarantee; no national policy guidance and oversight, "controllable" will also be difficult landing.
When information security and the national interests of everyone close contact, and when the information security industry about to take off, when the industrial development opportunities and challenges, the specification and change the information security industry in China has been ready to go ahead.
