SEARCH RESULTS
 
Showing 1-10 of 22 records
 
Expand article

How Secure is Secure?

2008-05-08 16:46:00 by sdl in The Security Development Lifecycle
 
...adopt a pragmatic approach in looking at identifying the root causes of security vulnerabilities, and trying to prevent those root causes from reoccurring. The challenge lies in how we actually validate that development teams are indeed adopting and executing whatever changes SDL requires in engineering (either in terms of process or tools)....
 
Tags: security metrics, software security metrics, implementation vulnerabilities, potential implementation vulnerabilities, metrics, secure, software, discretionary security protection, security protection
 
 
 
 
Expand article

Deloitte & Touche and IKON lose confidential information

The Article has images
2007-12-20 14:23:09 by Evan Francen in The Breach Blog
...adopt a " Vendor/Third-Party Access Security Policy ". Vendors are required to comply with the policy and many times it is even mentioned in the contract itself. The purpose of the policy is to ensure that vendors and other third-parties secure information at no less of a level than the original company The comments made by readers of the SC...
 
Tags: information, touche, ikon, confidential information, information security controls, deloitte, third-parties secure information, touche partners, ikon office solutions
 
 
 
 
Expand article

Top Five Intriguing Ideas for Authentication in 2008

2007-12-10 00:00:00 by Sean Kline in Speaking of Security, the RSA Blog and Podcast
 
...adopt frameworks like Information Risk Management to assess which threats to mitigate, inventory the types of controls (including authentication) that they need and take a more holistic approach to implementing their strategy
 
Tags: strategy, information risk management, organizations, broader strategy, increasingly adopt frameworks, authentication, individual applications, security doilies, controls
 
 
 
 
Expand article

Review of My 2007 Security Predictions: Too Wimpy

2007-12-23 15:46:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...adopted it. Calls to "upgrade Vista to XP" are heard loud and clear PII. New technologies: no credible technology that can alone "solve" the problem of insider threat will emerge (many will try); the insider threat problem is just too broad, diverse and rich to be solved by a single technology or even a single vendor (corollary: if somebody...
 
Tags: status check iii, status check, status check viii, security, security predictions, status check vii, check, predictions, status
 
 
 
 
Expand article

More trustworthy election systems via SDL?

2008-02-04 23:34:00 by sdl in The Security Development Lifecycle
 
...adopt such a systematic approach, or failed to think about mitigations of each possible attack if they did Ballot secrecy is an example where security and privacy concerns intersect. Many people confuse security and privacy, and both are fundamental to trust. Privacy addresses a wide variety of concerns about many types of data (such as...
 
Tags: machine security concerns, security concerns, election systems, election, security, security researchers, election systems margin, margin, election management system
 
 
 
 
Expand article

MCSE Course.Dont Be Left Behind

2008-02-17 23:43:00 by MCSE Boot Camp Courses Delhi India in MCSE Training Courses, MCSE Certification Courses, MCSE Courses Delhi India
 
...adopt. New top-notch certifications are MCITP Server Administrator and MCITP Enterprise Administrator But as of now, all the individuals who manage to earn this prestigious certification prove themselves to be worthy enough of leading business organizations in the successful design, implementation and administration of most advanced...
 
Tags: industry certification, certification, prestigious certification prove, systems engineer certification, mcse certification, mcse certification proves, mcse, microsoft, microsoft server products
 
 
 
 
Expand article

The First Step on the Road to More Secure Software is admitting you have a Problem

2008-02-21 14:26:00 by sdl in The Security Development Lifecycle
 
...adopt the SDL You improve security by focusing on security. Not by wishing on a star. Not by believing age-old myths about "given enough eyeballs.... blah blah." If the "eyeballs" mantra were true, we'd have very few open source security bugs. But there are plenty of open source security bugs found after products ship. Hmmm, this would seem...
 
Tags: vulnerabilities, reduce security vulnerabilities, fewer security vulnerabilities, security vulnerabilities, source security bugs, bugs, major microsoft products, microsoft products, security
 
 
 
 
Expand article

Industry trends - Survey results on Risk Management

The Article has images
2007-11-26 13:11:00 by Ryan Shopp in practical risk management
...Adopt a common operational framework Reduce autonomy while retaining authority Collaborate on all forms of enterprise security risks Provide better risk information for decision making Go beyond data sharing to collaborative planning and decision making The document is over 50 pages long and also includes example case studies and a ton more...
 
Tags: risk management, enterprise, enterprise security risks, security, approach security, enterprise risk management, survey, survey results, security program
 
 
 
 
Expand article

Good Economist Article on Software Security

2008-03-17 08:54:00 by Security Retentive in Security Retentive
 
...adopt particular tools and programming languages. Paul Black of NIST says its first report, on static-analysis tools, should be available in April. The purpose of the research is to get away from the feeling that all software has bugs and say it will cost this much time and this much money to make software of this kind of quality I added the...
 
Tags: software, software security, software equivalent, software assurance metrics, technology quarterly series, technology quarterly, security, software quality, technology