Date of prediction: 2011-01-02

Nevertheless, I expect to see three major shifts in thinking during 2011.

The first is that we are likely to experience a major security incident involving the integrity of our critical national infrastructure. (…) The long haul towards building acceptably secure information systems will begin.

The second is that emerging new security technologies, based on virtualisation and trusted computing, will encourage user organisations to develop non-traditional approaches to securing enterprise infrastructure. Cloud computing technology will provide an opportunity to escape from the treadmill of patching physical platforms. Security will also migrate to the cloud, and previously-ignored controls, such as device authentication, will become fashionable.

The third is that the growing need to encourage small and medium enterprises to implement security will finally be tackled. ISSA-UK is leading the way with new standards and guidance. Their initiative is likely to set a much bigger ball rolling across the globe, as SMEs dominate supply chains across key supplier regions such as the Far East.