Data/Physical-System Security Link

Computer Associates and several IT and physical security companies announced the formation of the Open Security Exchange.

At the RSA conference earlier this month in San Francisco, Computer Associates and several IT and physical security companies announced the formation of the Open Security Exchange. The group released a white paper outlining data models and an initial guideline for linking data and physical security systems.

Although IT managers should check out the specification, I think the group will gain importance only if it persuades CA peer competitors such as IBM to join the group.

CA has announced beta versions of OSE- compliant eTrust 20/20 and Security Command Center. Both products are designed to make it easier for IT managers to monitor access to physical spaces and IT assets.

Weve seen eTrust 20/20 in prerelease form for at least a year; IT managers with hard-to-maintain physical security needs or audit requirements may find the notification and reporting capabilities worth the trouble of joining what seems to be a long-term beta program.