SecurityRatty: tag: architectural

More on Application Security Metrics

2008-05-08 20:05:00 by Security Retentive in Security Retentive

...Architectural/Design Defects Implementation Defects I hadn't gotten good answers up to this point because measuring those internally during the development process is a constantly moving target. If your testing methodology is always changing, then its hard to say whether you're seeing more or fewer defects of a given type than before,...

Notes from IEEE Web 2.0 Security and Privacy Workshop (W2SP2008)

2008-05-27 22:45:00 by Security Retentive in Security Retentive

...architectural interest that I think were discussed enough at the workshop. A quick preview - the first half of the conference was spent talking about general security holes in Web-1.0 that we still haven't solved technically/architecturally/culturally. With that in mind its hard to see how we're going to have much success with Web-2.0...

Tags: browser, browser security models, browser project, browser security model, security models, browser security, security, web, security challenges

Is CEP a Service or a Process? Reloaded

2008-05-30 14:29:32 by Tim Bass in The Complex Event Processing Blog

...architectural pattern (or style)for processing distributed data, generally across a network The same question can be asked of SOA Is SOA a process or a service Again, the answer is almost identical SOA is anarchitectural style (subclass)of distributed computing Now, is CEP a product or a service CEP is an architectural style (or pattern) for...

Tags: cep, service, process, cep depends, cep solution, style, anarchitectural style, generic architectural pattern, complex events

Show 021 - A Panel Discussion with Cigitals Principals

2007-12-21 20:40:32 by rmacmich in The Silver Bullet Security Podcast

...architectural risk analysis or threat modeling is more helpful. John Steven also discusses the hole in his dining room, which threat modeling would not have helped to prevent Transcript of this episode [PDF Justice League blog Threat Modeling - a blog entry by John Steven OWASP Top 10 for 2007 OWASP The Shmoo Group

Tags: software security, security, principal consultant, cigitals principals, panel discussion, security touchpoints, owasp top, owasp, justice league blog

Orthogonal Blogging at the SOA Horse Races

2008-01-20 06:30:30 by Tim Bass in The Complex Event Processing Blog

...architectural discussion, in any way Is it any real wonder why SOA has become, for the most part, complex, vendor-driven jargon barely making a dent in the real-world, whereas social-networking and other grass-roots user-driven technologies, most without trendy three letter acronyms, has left SOA in the dust for the past few years

Tags: real, real-world, real business solutions, soa, soa horse, real business, software, software companies, customers

Ethics of Autonomous Military Robots

2008-01-28 07:12:35 by schneier in Schneier on Security

...architectural design criteria, recommendations, and test scenarios to design and construct an autonomous robotic system architecture capable of the ethical use of lethal force. These first steps toward that goal are very preliminary and subject to major revision, but at the very least they can be viewed as the beginnings of an ethical robotic...

Tags: ethical, ethical constraint set, ethical robotic warfighter, ethics, ethical boundaries, international protocols, war tradition subscribes, war, international

How to decipher confusing NAC claims

2008-02-21 00:00:00 by Tim Greene in Network World on Security

NAC can be confusing for very good reasons, not the least of which are that it is genuinely complicated and it has a great number of architectural options that only get greater when customers consider multivendor deployments

Tags: multivendor deployments, architectural options, nac, reasons, genuinely, customers

Warming the cold boot a bit of braggin from BitArmor

2008-02-28 13:17:00 by Manu Namboodiri in Data Protection, Management and Leakage

...architectural enhancements to prevent (the key word being prevent :))these attacks. From the paper Others have proposed architectures that would routinely encrypt the contents of memory for security purposes [28, 27]. These would apparently prevent the attacks we describe The others mentioned above, in case you were wondering, are McGregor...

Tags: approach, happy approach, disk encryption products, disk encryption, complexity approach, bitarmor, disk encryption technologies, researchers, princeton researchers

Server Launch : Security Highlights

2008-02-27 14:12:54 by jrjones in Jeff Jones Security Blog

...Architectural and defense-in-depth protections similar to those lauded in Windows Vista, such as ASLR, Services hardening, and general benefit of the latest generation of the SDL Server Core Network Access Protection. Policy driven health checks of machines before they are granted full network access SQL Server 2008 Built upon the incredible...

Tags: security, incredible security record, windows, windows vista, sql server, security source code, windows server, network access protection, network access

"Crawling" Toward SDL

2008-03-06 22:13:00 by sdl in The Security Development Lifecycle

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo