Cutting through the White Noise
...information
Make it fun. Find ways to reward the folks who are doing it right. Let that encourage others to improve
Security Renaissance
 |  |
 |  |
 |  |
 |
Showing 1-10 of 10 records
| |
| |
| |
|
The C-I-A Triad weighed and found wanting
...Information Security has changed! Foundational concepts, such as the traditional C-I-A triad (Confidentiality, Integrity, and Availability) are being challenged and supplanted by a more inclusive model known as the Parkerian Hexad [1]. The Parkerian Hexad augments the traditional C-I-A triad by adding three elements. The result is a set of...
| |
| |
| |
|
Surveillance and the use of social psychology
There is a lot of talk about both surveillance and psychology these days. The following photo and quote taken from Boing Boing
The quote below is from a recent New York Times Magazine article describing a psychology experiment conducted by Newcastle University in which those conducting the experiments taped alternating photos above an on your...
| |
| |
| |
|
Week in review
...security and privacy renaissance. Ethical questions related to government and employer surveillance are being raised and reraised. Security and privacy advocates exist on both sides of the debate such is our post-9/11 society. My prediction is that the Wal-Mart eavesdropping story will be in 2007 what the HP pretexting story was in 2006. The...
| |
| |
| |
|
Mobile Malware wrap-up for 2006
Alexander Gostev at Kaspersky Labs has been doing a great job summarizing the evolution of mobile malware. His latest installment is a wrap-up for 2006 . If you are into tracking trends in the mobile malware space, this is a must read
| |
| |
| |
|
New resource added
...Security Professionals
Mobile Malware (short essay
Cryptography in a very small nutshell
Perry
| |
| |
| |
|
The psychology of risk perception
...security professionals, is exploiting this to our advantage. My playing off of peoples irrational fears, we will only lose credibility
If, in our companies and our communities, we are able to show people how to examine risk logically, we will ultimately gain trust
We dont have to be fear-mongers to be successful
| |
| |
| |
|
Multimedia 911 security concerns
...security of any proprietary systems involved in enabling this functionality
With systems such as this, several questions and concerns come to mind.As such, I posed the following top-of-mind questions in my Computerworld post
C]an someone doctor image files to falsely implicate someone? Is the software that is receiving and processing the...
| |
| |
| |
|
That thing you do keystroke dynamics
...security professionals have known and been saying that passwords themselves are inadequate thus the need for two-factor (or stronger) authentication. However, multifactor authentication implementations are typically known to be costly (e.g. issuing tokens or biometric readers). Further, many companies report user push-back: some end-users...
| |
| |
| |
|
Another VA hard drive lost
Ugh. Less than a year after the reported loss of a laptop containing the data of 26.5 veterans, the VA looses another laptop. Oh yeah and in the intervening months they developed processes and procedures to ensure that such data is encrypted; yet this report mentions that there were upwards of 20,000 unencrypted records
Here are a couple links....