IBM looks to secure online data
Big Blue teams up with a provider of management services to help companies ensure that their online operations adhere to privacy standards and regulations.
With the arrangement, IBM said Monday that it will be able to help businesses protect customer privacy and shield themselves against liability. Big Blue will base the service on Watchfire's technology to automatically spot threats to identity information.
"The ability to monitor, manage and mitigate the risks related to privacy breaches...can help firms avoid potential customer backlash and litigation," Harriet Pearson, chief privacy officer for IBM, said in a statement.
 | ||||
| | | ||
| Get Up to Speed on... Enterprise security  Get the latest headlines and company-specific news in our expanded GUTS section. | | ||
| ||||
| ||||
Recent incidents and legislation have thrust identity management and data protection into the spotlight.
The U.S. Securities and Exchange Commission filed charges against a 19-year-old Pennsylvania man for allegedly stealing another man's identity and then draining his online brokerage account. And a California law that went into affect in July requires that businesses notify customers whenever an attack puts their data in danger. That law, called the California Security Breach Information Act, and the federal Graham-Leach-Bliley Act and the Health Insurance Portability and Accountability Act (HIPAA) are intended to prod the industry to adopt better data-handling practices.
In Monday?s announcement, IBM cited a recent study performed by Watchfire that found two-thirds of Web sites that collect personal information cannot adequately secure the data. Moreover, 18 percent of the companies use online forms that could leak information to an attacker.
The new service is designed to automatically sift through the numerous pages that make up an online commerce site and to test all data-gathering procedures.