1 minute reading
About Lena Kannappan
A visionary leader and serial entrepreneur, Lena is an original founder of the SAML 2.0 protocol and the Federated Identity Management model, which changed the way identity information is shared between service providers and enabled the huge success of SaaS, Cloud, and Social Networking.
The Future of Email Defense: Shifting from Identity to Intent
As cyberattacks become increasingly sophisticated, the industry is moving toward a granular infrastructural level of security known as intent-based email security. Traditional email filtering has long relied on identity-based encryption, domain-based protocols like SPF and DMARC, and sender reputation. However, these legacy approaches often fail to keep pace with modern threats. The core of this topic involves moving beyond simple malicious payloads and looking at the behavioral patterns and communication context of every message.
By understanding why a message was sent, organizations can detect zero-day attacks and complex social engineering that traditional filters would otherwise miss. This technology is particularly vital in sensitive sectors like healthcare, where the protection of Electronic Health Records (EHR) and clinical workflows is a matter of patient safety.
Important Lines from the Speaker:
- “Security in general is moving at three times slower than the speed at which AI is moving”.
- “Intent-based email security basically it analyzes the behavioral patterns context and especially the communication anomalies to to determine um you know why the message was sent”.
- “Healthcare is the I would say the first industry is very vulnerable to ransomware… this is really becoming critical”.
Analyzing Communication Context to Stop Ransomware
Lena emphasizes that intent-based security is a “game changer” because it provides deeper insights than standard business email compromise (BEC) tools. In a healthcare setting, this technology helps stop unauthorized access to Electronic Health Records (EHR) and protects Protected Health Information (PHI). By identifying impersonation patterns and communication anomalies, organizations can prevent ransomware attacks that often lead to the disruption of clinical workflows.
Despite its benefits, Lena notes that challenges remain, particularly regarding the integration with existing SOC environments and legacy security tools, as the technology is still maturing through native startups. However, Lena advocates for this approach as the necessary roadmap for mid-to-large-size hospitals aiming for HIPAA compliance and high-level auditability. Ultimately, intent-based security provides the “proof in the pudding” by frequently uncovering 20% to 30% more issues than established legacy infrastructure.
Discuss Your Organization’s Human Risk Challenges – Book a Meeting
