ICSG is the first activity within the IEEE-SA Industry Connections program, announced in a separate press release.
"We've seen a whole ecosystem develop around threats to computer security. Trends such as open-source development, collaboration and software-as-a-service are firmly established in the malware community, with a lot of money changing hands to fuel more coordinated and automated attacks," said Jeff Green, ICSG chair and senior vice president of McAfee Avert Labs. "The industry has fragmented itself among various siloed efforts designed to solve very specific problems, such as phishing and spyware.
ICSG offers us a unique opportunity to work collectively in a safe-harbor environment to advance innovation, more comprehensively address the security problem and deliver systematic improvements."
ICSG is engaging a wide variety of entities — security vendors, industry content contributors (such as banks and Internet service providers), educational institutions and government agencies, among them — in a collaborative forum for advancing the technologies, methodologies and best practices for sharing computer security information. The group will develop, document and promote proposals for enhancing security, toward the goal of producing consensus approaches and perhaps fueling new IEEE standards.
ICSG's first working group is focused on malware (malicious software such as viruses, worms and spyware). Threats have increased dramatically — from 125,000 unique pieces of malware in 2006 to 1.5 million in 2008 and 1.2 million in the first half of 2009 alone, according to McAfee. ICSG is working to establish more intelligent ways of sharing malware samples and the information associated with them in a way that makes the security industry more effective.
"In the past few years, attackers have shifted away from the mass distribution of a small number of threats to micro distribution of millions of distinct threats," said Vincent Weafer, vice president, Symantec Security Response. "This new data sharing standard initiative, established under the umbrella of the IEEE Industry Connections Security Group, provides a framework for the development of new industry standards that enable the pooling of industry experience and resources, and will have visibility and review by the wider academic and industry groups."
Added McAfee's Green: "No one organization is capable of addressing the magnitude and sophistication of today's threat. The problem demands a more cohesive response. We are at a point in computer security that is analogous to when the FBI was formed to augment the work of police forces in individual states and address interstate crime. The eagerness of our initial members to participate shows that the time has arrived for ICSG to assume that overarching, flexible role."