Edge computing demands a more integrated security response

SMART Cybersecurity Handbook 2022 Information Security

One of the new battlefields of today is the rise of the edge. On the one hand this domain brings significant functional and economic benefits, enabling the emergence of a new breed of real-time applications, but at the same time such a plethora of devices augments the attack surface, creating new entry doors into the corporate network.

The laptops, smartphones, security cameras and sensors in items that you’re tracking all make it easier to do business and manage your operations. They also vastly increase the playground that hackers can target, warns Alain Sanchez, EMEA chief information security officer, senior evangelist at Fortinet.

Speaking during Fortinet’s recent Security Day Africa event, Sanchez highlighted some pros and cons behind the massive growth in edge computing, which allows companies to capture, store, process and analyse data where it is generated, instead of in a centralised data-processing warehouse.

Ecosystem of the edge

It’s being enabled by the high speeds and low latency of 5G network architecture. That low latency has created an ecosystem at the edge of the network that empowers people and AI (artificial intelligence) by letting them make decisions as close as possible to the operations without generating traffic back and forth. It’s making organisations flatter with faster decision-making processes, but it opens up more routes for attackers to infiltrate. 5G also makes swarm-based attacks more likely because its distributed architecture uses building blocks that can be shared amongst telecommunications services.

Edge computing is generating investments worth $4,68 billion in the US only in 2020. “We are living in a moment of digital acceleration that will not stop. But these digital transformations carry threats by increasing the number of touchpoints to attack,” Sanchez warned. “This rise of the edge is something very important that we have to deal with in the coming months and years.”

The Covid-19 pandemic that pushed people into working from home accelerated the move to edge computing. It also increased the risk, by putting people who don’t understand the sophistication of cybercriminals and the threats they pose in charge of their own security.

“Everyone has the temptation to adopt one single password for every application because it’s easier to remember, but look at the damage it can cause. It’s a series of open doors into all your information,” Sanchez said. “Many people are connecting to business-critical applications through home-grade routers. Some are doing video conferences with a PC that one hour ago was downloading games from a not-so-clean server.”

In Africa last year, many of the recorded attacks took advantage of the presence of Covid-19 by specifically targeting this new architecture. The switch towards remote working has also accelerated cloud computing, which carries other risks as data is distributed more broadly. The benefits of the cloud must be protected by a security posture, rules and strategy that sit on top of it, he said.

Security-driven networking

Traditional security strategies can’t keep up with the risks posed by this expanding attack surface, given the ever-increasing professionalism and volume of cyber-attacks. Protecting a business now requires what Fortinet dubs ‘security-driven networking’ that tightly integrates a security architecture and the network infrastructure into one platform containing all the necessary components to keep a network secure as it scales and changes. The networking and security functions will merge into one connectivity layer involving a series of hybrid, moving clouds.

At the moment, multi-cloud strategy is emerging as a massive trend, 71% of organisations are embarked on a multi-cloud transformation. Now if this mitigates the risks, it also adds management complexity and increases the attack surface. In this context the need for a single management pane is crucial; 78% of security professionals see it as extremely helpful, according to the 2021 Cloud Security report. “Security is a common strength across all the elements of the information system and has to provide end-to-end visibility and the ability to understand, analyse and act,” he said.

To help achieve that, Fortinet has developed solutions that leverage ML (machine learning) that learn a user’s normal behaviour and flag any behaviour that doesn’t match their credentials.

This trend towards security-driven networking will benefit companies by protecting their edge computing endeavours and let the security officers deal with the various scenarios that will unfold in the future.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
Upgrade your PCs to improve security
Information Security Infrastructure
Truly secure technology today must be designed to detect and address unusual activity as it happens, wherever it happens, right down to the BIOS and silicon levels.

Read more...
Open source code can also be open risk
Information Security Infrastructure
Software development has changed significantly over the years, and today, open-source code increasingly forms the foundation of modern applications, with surveys indicating that 60 – 90% of the average application's code base consists of open-source components.

Read more...
DeepSneak deception
Information Security News & Events
Kaspersky Global Research & Analysis researchers have discovered a new malicious campaign which is distributing a Trojan through a fake DeepSeek-R1 Large Language Model (LLM) app for PCs.

Read more...
SA’s strained, loadshedding-prone grid faces cyberthreats
Power Management Information Security
South Africa’s energy sector, already battered by decades of underinvestment and loadshedding, faces another escalating crisis; a wave of cyberthreats that could turn disruptions into catastrophic failures. Attacks are already happening internationally.

Read more...
Almost 50% of companies choose to pay the ransom
News & Events Information Security
This year’s Sophos State of Ransomware 2025 report found that nearly 50% of companies paid the ransom to get their data back, the second-highest rate of ransom payment for ransom demands in six years.

Read more...
Survey highlights cost of cyberdamage to industrial companies
Kaspersky Information Security News & Events
The majority of industrial organisations estimate their financial losses caused by cyberattacks to be over $1 million, while almost one in four report losses exceeding $5 million, and for some, it surpasses $10 million.

Read more...
Digital economy needs an agile approach to cybersecurity
Information Security News & Events
South Africa is the most targeted country in Africa when it comes to infostealer and ransomware attacks. Being at the forefront of the continent’s digital transformation puts South Africa in the crosshairs for sophisticated cyberattacks

Read more...
SIEM rule threat coverage validation
Information Security News & Events
New AI-detection engineering assistant from Cymulate automates SIEM rule validation for SecOps and blue teams by streamlining threat detection engineering with automated testing, control integrations and enhanced detections.

Read more...
Cybersecurity a challenge in digitalising OT
Kaspersky Information Security Industrial (Industry)
According to a study by Kaspersky and VDC Research on securing operational technology environments, the primary risks are inadequate security measures, insufficient resources allocated to OT cybersecurity, challenges surrounding regulatory compliance, and the complexities of IT/OT integration.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.