SEARCH RESULTS
 
Showing 1-10 of 53 records
 
Expand article

Mashup of the Titans

2008-06-25 17:29:25 by Gunnar Peterson in 1 Raindrop
 
...Conclusion(gp): So far, so good Saltzer and Schroeder b) Fail-safe defaults: Base access decisions on permission rather than exclusion. This principle, suggested by E. Glaser in 1965,8 means that the default situation is lack of access, and the protection scheme identifies conditions under which access is permitted. The alternative, in...
 
Tags: protection mechanisms, protection mechanisms correctly, information security, information, implements protection mechanisms, information travels, information security people, protection, potential information path
 
 
 
 
Expand article

Risk and Culture

2008-05-21 05:19:59 by schneier in Schneier on Security
 
...conclusion: Conclusion There is a culture war in America, but it is about facts , not values. There is very little evidence that most Americans care nearly as much about issues that symbolize competing cultural values as they do about the economy, national security, and the safety and health of themselves and their loved ones. There is ample...
 
Tags: risk, values, cultural values, hold hierarchical, hold, egalitarian values, hold individualist values, diverse values, national risk
 
 
 
 
Expand article

Daily Mail publisher admits to stolen laptop

The Article has images
2008-07-05 12:55:49 by Evan Francen in The Breach Blog
...conclusion drawn? I don't see how there could be enough information to determine what the thief was likely to do From the letter to affected persons from the Associated Newspapers group finance director, Simon Dyson, and his Northcliffe counterpart, Martyn Hindley Unfortunately one of the company's laptops has been stolen The contents...
 
Tags: information, personal information, daily mail publisher, daily mail, personal, store confidential information, laptop, personal data, laptop company computer
 
 
 
 
Expand article

Some Massachusetts seniors are at risk

The Article has images
2007-12-04 16:17:26 by Evan Francen in The Breach Blog
...conclusion is drawn? If the breach does not affect all 150,000 then why inform 150,000? Maybe Prescription Advantage doesn't know who was affected and who wasn't Prescription Advantage recently began notifying 150,000 members potentially affected, as required by state data-breach laws A few members were recently the victims of attempted...
 
Tags: breach, computer security breach, breach description, prescription advantage, security breach, prescription advantage program, data-breach laws, lone identity thief, thief
 
 
 
 
Expand article

Factoring News

2007-06-04 13:00:00 by Burt Kaliski in Speaking of Security, the RSA Blog and Podcast
 
...conclusion of his post Mersenne numbers, because of their special form, are especially shaky. They fall much more quickly to factoring methods than the "tested and approved" counterparts of the same length used in cryptography - which is the reason that Mersenne numbers are often targeted in factoring research
 
Tags: 1039th mersenne, mersenne, recent blog entry, earthquake metaphor, informative explanation, recent factorization, special form, research, post
 
 
 
 
Expand article

You Need An Address to Call 911

2007-08-23 09:23:00 by Eric Marvets in The Security Samurai
 
...conclusion that it was probably stolen and ditched. I decided to call 911 to let them know of its location, so the expensive car could be reclaimed I could not imagine that it would have taken 10 minutes for me to explain where I was, but it did The problem was I didnt have an address. All I knew was the exit number off the highway, the name...
 
Tags: tracks, train tracks, railroad tracks, rail road tracks, hotel, address, road, expensive car, imperfect information
 
 
 
 
Expand article

Logging Poll #3 "What Do You Do With Logs?" Analysis

The Article has images
2007-12-07 09:19:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
...conclusion at the time (which is also valid now) was that " SIEM is for some, log management is for everybody ." This poll confirms this further Finally, all my logging polls and analysis are here . Next one is coming up Technorati tags: logging , polls , log management About me: http://www.chuvakin.org
 
Tags: logs, store raw logs, log management business, log management, analysis, poll, commercial log management, raw logs, log management tools
 
 
 
 
Expand article

Logging Poll #4 "Who Looks at Logs?" Analysis

The Article has images
2008-01-08 19:48:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
...conclusion is in order! No matter how many times one can utter the word " compliance ," logs are still most useful for mundane (one would hope! :-)) system administration. Yes, indeed, sysadmins are the primary consumers of logs - yesterday, today, and - likely! - tomorrow as well Second , I am saddened by the fact that application developers...
 
Tags: logs, poll, incident response, incident response team, reveal answers unobtainable, technorati tags, theoretical physicist, applications, application developers
 
 
 
 
Expand article

Stolen laptop contained unencrypted Fallon Community Health Plan information

The Article has images
2008-01-25 11:54:27 by Evan Francen in The Breach Blog
...conclusion Jan. 14 that the information was not protected Evan] I wonder why the vendor thought that the information had been encrypted. Do they encrypt some laptops, and not others? It is a good idea to encrypt all laptops (and mobile devices) rather than try to determine which ones may have confidential information on them and which ones do...
 
Tags: information, sensitive personal information, fallon, protect confidential information, accesses confidential information, fallon senior plan, senior plan, confidential information, unknown vendor
 
 
 
 
Expand article

Tools Need People!!

2008-01-30 11:55:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...conclusion: if you don't plan to actually use the tools or don't have anybody who would use it, it really won't matter which one you'd pick - you are guaranteed to flush your money down the toilet About me: http://www.chuvakin.org
 
Tags: tools, solve, jeremiah grossman, people, sadly, excerpt, post, money, conclusion