The tech industry needs a global body to legislate on security standards, according to an IBM security expert.
At the current time, common criteria is not a modern enough approach and "something needs to happen on a global stage," said Kristin Lovejoy, vice president of security strategy at IBM.
An organisation needs to be established, perhaps within the UN, to govern security standards, although it is likely this would take "a long time," Lovejoy explained.
"Here's the problem, if the Russians, the Chinese, the US, the EU and Singapore if they all come up with their own standards what happens is it becomes impossible for organisations to compete globally because they have to rebuild their products for every geographical market," she told IT PRO at this week's RSA Conference Europe.
With nation-set standards, manufacturers would be required to provide their source code to that national government and this would bring with it intellectual property (IP) issues, she said.
"It's not simply the potential IP theft issue, it's the fact that those national governments now have insight into your protection profiles," Lovejoy explained.
"On some levels, security is still about obscurity and the more they know the more there is a potential for them to create backdoors into those technologies. We're in this state now where we are stuck because we don't have an international standard other than common criteria, which I think everybody agrees... needs to be improved, modernised."
She called for an international best practice to be accepted by national governments across the world and provide multi-nationals with a "safe harbour."
-
Intune flaw pushed Windows 11 upgrades on blocked devicesNews Microsoft is working on a solution after Intune upgraded devices contrary to policies
-
Asus ZenScreen Fold OLED MQ17QH reviewReviews A stunning foldable 17.3in OLED display – but it's too expensive to be anything more than a thrilling tech demo
-
Starmer bets big on AI to unlock public sector savingsNews AI adoption could be a major boon for the UK and save taxpayers billions, according to prime minister Keir Starmer.
-
UK government targets ‘startup’ mindset in AI funding overhaulNews Public sector AI funding will be overhauled in the UK in a bid to simplify processes and push more projects into development.
-
IBM completes HashiCorp acquisition after regulatory approvalNews IBM has completed its $6.4 billion acquisition of cloud automation and security firm HashiCorp,
-
UK government signs up Anthropic to improve public servicesNews The UK government has signed a memorandum of understanding with Anthropic to explore how the company's Claude AI assistant could be used to improve access to public services.
-
The UK’s AI ambitions face one major hurdle – finding enough home-grown talentNews Research shows UK enterprises are struggling to fill AI roles, raising concerns over the country's ability to meet expectations in the global AI race.
-
US government urged to overhaul outdated technologyNews A review from the US Government Accountability Office (GAO) has found legacy technology and outdated IT systems are negatively impacting efficiency.
-
IBM eyes Oracle expertise gains with latest acquisition
News The deal aims to help IBM address the complexities of public sector cloud transformation
-
Government urged to improve tech procurement practicesNews The National Audit Office highlighted wasted money and a lack of progress on major digital transformation programmes
