SecurityRatty: tag: adam

Show 026 - An Interview with Adam Shostack

2008-05-15 19:17:01 by rmacmich in The Silver Bullet Security Podcast

...Adam Shostack, a security expert on Microsofts Secure Development Lifecycle team who has also worked for Zero Knowledge and Reflective. Gary and Adam discuss how Adam got started in computer security, how art/literature informs Adams current work, and the main ideas behind Adams new book The New School of Information Security . They go on to...

Yet another benefit of executive support for SDL...

2007-11-15 23:04:00 by sdl in The Security Development Lifecycle

...Adam a break on the threat modeling series, I thought I'd take this week and give him a breather. As much as I like him blogging about threat modeling, I like him driving our tool development efforts even more As we have alluded to many times in the past, our success with the SDL has been predicated on a number of factors - however I'd like...

Tags: community, security researcher community, security, security tools, security efforts, security tool development, windows security assurance, security science team, team

Notes from IEEE Web 2.0 Security and Privacy Workshop (W2SP2008)

2008-05-27 22:45:00 by Security Retentive in Security Retentive

...Adam Barth . Beware of Finer-Grained Origins Collin Jackson presented some work he and Adam have done on how the browser security model, namely the same-origin policy, isn't nearly granular enough to handle most web applications and sites that host them For example http://cs.stanford.edu/~abarth http://cs.stanford.edu/~cjackson both have...

Tags: browser, browser security models, browser project, browser security model, security models, browser security, security, web, security challenges

IT Industry to Congress: Help Needed to Fight Cyber-crime

2007-10-16 00:00:00 by Shannon Kellogg in Speaking of Security, the RSA Blog and Podcast

...Adam Schiff (D-CA). H.R. 2290, if passed, would include changes to law that would: criminalize malicious botnet attacks

Tags: malicious botnet attacks, business software alliance, representative adam schiff, representative steve chabot, art coviello, october 16th, cyber security, industry keynote, media representatives

Review: Fuzzing: Brute Force Vulnerability Discovery

2007-12-17 18:30:18 by Editor in Help Net Security - News

Authors: Michael Sutton, Adam Greene, Pedram Amini Pages: 576 Publisher: Addison-Wesley Professional ISBN: 0321446119 Introduction Although fuzzing may sound like a new concept to some, t

Tags: addison-wesley professional isbn, pedram amini pages, adam greene, michael sutton, authors, introduction, publisher, concept, sound

Ask the Auditor: Who is Responsible for Information Security?

2007-12-29 06:24:50 by Editor in Security Links

...Adam H. Putnam, chairman of the Subcommittee on Technology, Information Policy, Intergovernmental Relations & the Census of the Government Reform Committee, of the U.S. House of Representatives. Its publications include CISWGThe Final Report of the Best Practices and Metrics Teams (PDF CISWGInformation Security Management References(PDF 3....

Tags: information, information security, information policy, information security risks, information assurance, information security governance, information security managers, information security management, assign information security

Zune Killer App - Windows Media Center

2007-11-26 21:55:40 by jrjones in Jeff Jones Security Blog

...Adam Monroe." I'll watch Episode 8 on the way home... And My TV Movies Too And, it doesn't stop there. As I described previously , I've been building up quite a library of TV Movies, cutting out commercials, compressing them and creating my own on-demand TV Movies library. Since I got my Zune, I've switched to using MP4 compression with H.264...

Tags: zune, apple tv, apple, tv, tv movies, zune software, zune tv comparison, media center, windows media center

Don't Try This At Home

2007-11-05 21:52:28 by sdl in The Security Development Lifecycle

...Adam should never volunteer to do a 12 part series on threat modeling, but rather, why inventing your own mitigations is hard, and why we suggest treading carefully if you need to go there Let me first explain what I mean by mitigations because apparently theres some confusion. We have folks here at Microsoft who call things like the /GS...

Tags: mitigations, custom mitigations, security mitigations, innovative mitigations, software projects, software, expert, design, design principles

Threat Modeling Self Checks and Rules of Thumb

2007-10-22 21:04:01 by sdl in The Security Development Lifecycle

Adam again. I hope youre still enjoying this as we hit #5 in the threat modeling series In my last post, I talked about how almost everyone in software draws on whiteboards regularly, and this makes it an ideal first step. Its an ideal first step because everyone can do it, see that theyve done it, and feel like theyre making progress That wasnt...

Tags: thumb, threat, rules, people threat, data, people, data sinks, thumb encourage flow, actual software

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo