[SecurityRatty] tag: potent

Friday Squid Blogging: Plastinated Squid

Fri, 28 Mar 2008 13:29:19 +0000

France's National Museum of Natural History on Tuesday unveiled the world's first "plastinated" squid -- a 6.5-metre-long (21.25-feet) deep-sea beast donated by New Zealand and named in honour of a creature featuring in Maori legend.
Plastination entails replacing the animal's water, fat and other liquids with a polymer that hardens.

It means the specimen can be appreciated in three dimensions in a dry, solid state, rather than in a jar filled with formalin or alcohol, whose glass distorts the view.

The squid was hauled up in January 2000 at a depth of 615 metres (2,000 feet) by fishermen off New Zealand.

[...]

The 65,000-euro (100,000-dollar) plastination, carried out by Italian lab VisDocta Research, took two and a half years, during which the specimen of Architeuthis sanctipauli lost 2.5 metres (seven feet) of its length through drying out.

Wheke is being given pride of place in the Paris museum's Great Gallery of Evolution, its centrepiece exhibit on biodiversity.

The giant squid, Architeuthis, of which there are three sub-species, is a potent source of maritime tales of tentacled monsters able to grab a ship and pull it down to its doom. The critter memorably featured in Jules Vernes' "20,000 Leagues Under the Sea," trying to engulf the submarine Nautilus.

In real life, though, the species is rather less gigantic -- about 13 metres (42.25 feet) from the caudal fin to the tip of its suckered tentacles. Females are larger than males.

Measuring the Wrong Things?

Mon, 24 Mar 2008 18:04:00 +0000

I'm not sure why I'm always finding interesting articles in NPR about medicine that seem to resonate so much in relation to software security. Nonetheless that seems to be how things go, so here comes another one.

NPR ran a story the other day titled "Doctors' 'Treat the Numbers' Approach Challenged". The main idea in the story is that doctors have been treating patients and using the results of certain tests as the metrics by which they judge health. They treat a patient with drugs, therapies, etc. to get to the diagnostic numbers they want, but now we're finding out that perhaps the numbers are not necessarily representing what we'd like them to.

The example from the article was:

Doctors call it "treating the numbers" — trying to get a patient's test results to a certain target, which they assume will treat — or prevent — disease. But earlier this year, a study on a widely used cholesterol drug challenged that assumption.
Vytorin, a combination of two cholesterol-lowering agents, certainly lowers cholesterol. But patients taking it didn't have any less plaque in a major artery than those taking a less-potent drug.

I'm assuming that less plaque generally does translate to fewer adverse events, but the article doesn't cover this. Helpfully, in medicine we generally have a pretty clear definition of an adverse event, and we're not dealing with intelligent active threats. Active threats (virus, bacteria, fungus, parasite), but not intelligent... We don't try to design cholesterol treatments to fend off a malicious food company that has designed a new more dangerous form of cholesterol that our drug can't fight :)

Knowing what to measure in security is hard though. We've covered a little of this before here.

If you're looking for more formal treatments of security metrics - check out the Quality of Protection (QoP) workshop held as part of the ACM CCS Conference.

"The goal of the QoP Workshop is to help security research progress towards a notion of Quality of Protection in Security comparable to the notion of Quality of Service in Networking, Software Reliability, or measures in Empirical Software Engineering."

Over the next few posts I'll take a few of the papers from the workshop and discuss a bit of their results. If you're interested in the TOC for the workshop, you can find it here.

Mozilla gets a new CEO

Mon, 07 Jan 2008 21:00:00 +0000

Mitchell Baker has stepped down as the CEO of Mozilla Corporation, where she helped make the Firefox Web browser a potent rival to Microsoft's Internet Explorer.

We Love Virtual Appliances	Advertisement
SpamTitan for VMware 99% Spam Detection, Kaspersky AV, Anti Phishing,30 Free Evaluation,Download Now

Symantec + Vontu: A Marriage Made In Heaven?

Tue, 13 Nov 2007 05:55:35 +0000

Everybody who keeps an eye on the Information Leak Prevention (a.k.a. Data Loss Prevention a.k.a. Outbound Content Compliance a.k.a. Extrusion Prevention a.k.a. …you get the picture) space saw this acquisition coming for what seemed liked an eternity. Since last year, Forrester has been forecasting consolidation frenzy and McAfee (Onigma and SafeBoot), Websense (PortAuthority), RSA/EMC (Tablus), Trend Micro (Provilla), Raytheon (Oakley Networks), and others have delivered. Additionally, IBM/ISS recently announced strong partnership moves and Cisco is weighing its options. Well, now this deal is out in the open – and this is good news. It is good news for at least 3 reasons:

(1) ILP awareness. It further propels insider threat problems (and the ILP market) into the consciousness of Security and Risk Management professionals. Customers simply cant afford to neglect the challenge of preventing data loss any longer – the IP stakes are getting higher, USB sticks, etc. make loss or theft easier, and regulators are turning up the heat.

(2) Competition and clarity. It will increase competition and will help to clarify the question of “What is ILP and what should it do?” This means that vendors offering “some ILP functionality” will either fall by the wayside or invest/acquire for full blown ILP functionality. The same applies to vendors not being able to capture ILP mind share and – more importantly – generate customer traction.

(3) Integration. When a potent security front runner marries an ILP leader with solid customer traction – customers must and can expect strong, integrated solutions that address their problems.

However, this is also where I see the main challenge for Symantec/Vontu – and for that matter for anybody acquiring or thinking about a more pronounced strategy for data-centric risk based security – SPEED. ILP is hot because customers need to address their insider challenges (or else gamble with their data security) – and they impatiently expect solutions that are accurate, easy to use, and integrated. So integrating ILP – and doing it fast – is what Symantec needs to do to capture the short term opportunities this acquisition holds. Long term, however, they need to at least match EMC/RSA’s security and information management strategy that goes beyond the threat side of the house. Plenty to do for Symantec – but I am confident they can lift this one.

PS: For more information on how Symantec/Vontu and other ILP vendors compare please tune into our ILP Wave Update which will become available in mid-Q1 2008.

Thomas Raschke