An InfoSec Theory of Business Enablement, Researchers Challenge Professionals to Find Holes and Benefits

Two security professionals have challenged the information security field to find out what's right and what's wrong with a new theory they have proposed. It has never been proven that information security can be a business enabler; the focus has always been on loss prevention. These researchers believe they can show otherwise.

New York, NY (PRWEB) October 2, 2006 -- Security as a business enabler? Perhaps. Two information security researchers claim to have developed a theory which shows how information security may be used as a business enabler. They feel this is a departure from the loss prevention perspective that dominates the field.

They have issued an open challenge to all information security professionals to find both benefits and drawbacks to their proposed theory.

Mr. Kenneth Belva and Dr. Sam Dekay wrote a paper entitled, "Creating Business Through Virtual Trust: How to Gain and Sustain a Competitive Advantage Using Information Security."

The paper's thesis maintains that certain security mechanisms are used to create electronic -- or virtual -- trust. This theory maintains that it is trust between entities which allows electronic assets, business relationships and transactions to occur and that electronic commerce cannot be conducted without such virtual trust.

Mr. Belva has defended this thesis quite successfully on the full-disclosure mailing list. He feels it's time to open up the challenge.

"This challenge is really the ultimate peer review," said Mr. Belva. "I've been able to defend the position in a public forum and would now like to open up the scope of the review to the entire field. There are some really smart people out there and I look forward to a constructive debate, as well as listening to what positive things may be done with the theory."

Mr. Belva's challenge may be found on his blog:
http://www.bloginfosec.com/?p=75

# # #