SecurityRatty: tag: conclusions

Top 3 conclusions about IT Risk Management we like hearing

2008-02-25 14:28:00 by Ryan Shopp in practical risk management

...conclusions that grabbed our eye Businesses would be far better served if they viewed security as an IT risk management element that can be addressed alongside other critical elements, such as availability, performance and compliance Technology alone can't mitigate IT risk. While technology plays a critical role in IT risk mitigation,...

Tags: risk management, risk, risk management element, risk mitigation, management, recent symantec, nice summary, technology plays, technology

Personal Internet Security: follow-up report

2008-07-08 13:05:04 by Richard Clayton in Light Blue Touchpaper

...conclusions but they have once again produced a useful report with sound conclusions, so Im very happy to promote it Their initial report last summer , which I blogged about at the time , was almost entirely rejected by the Government last autumn ( blog article here The Committee decided that in the light of the Governments antipathy they...

Tags: report, committees report, initial report, short report, internet, committees follow-up report, personal internet security, technology committee, banks

CHECKLISTS ARE NOT FOR DUMMIES, BUT THEY SURE ARE DUMB!

2008-06-11 13:51:33 by Alex in RiskAnalys.is

...conclusions of this article are likely to have much value to me in my quest to understand the value of risk reducing investments. What Ive synthesized from the quality of the article - State of Wisdom Just a clue for our readers, anytime you read someone talk about risk and mention the term actuarial - be skeptical about the conclusions they...

Tags: checklists, article checklists, article, mmmmm-mmmmmmm checklists, nice checklists, provide analysis, provide, nature, nature statement

A Cryptographer and a Data Communications Guy Talk About Risk Management

2008-10-16 15:32:16 by Alex in RiskAnalys.is

...conclusions. The trick is in how you deal with it and express it. And while I really dont know how much time Marcus or Bruce have really spent in the deep end on the subject of risk and its management - I have seen people doing brilliant things around risk (though they just arent mainstream). Whether the tools are Bayesian methods, Monte...

Tags: risk management, management, risk, engineer risk management, methodologies, risk assessment methodologies, risk models, risk analysts, models

Auditing open source software

2007-10-08 16:13:00 by Panayiotis Mavrommatis in Google Online Security Blog

...conclusions from these bugs. The specific vulnerabilities are integer overflows, out-of-bounds array accesses and buffer overflows. However, the general theme is using an integer from an untrusted source without adequately sanity checking it. Integer abuse issues are still very common in code, particular code which is decoding untrusted...

Tags: image, malicious image file, libtiff image, values, jpeg image, tiff header values, source, evil tiff file, evil

Diminutive XSS Worm Contest Drama and Status Update

2008-01-06 17:34:38 by RSnake in ha.ckers.org web application security lab

...conclusions. Christmas is already over though, and I already got my wishes granted so I wont be surprised if it doesnt happen So thats the drama! Gotta love it, huh? Where would I be without the under-educated rants and conspiracy theories? The good news is that there is a lot of really interesting research coming out of the contest, and...

Tags: browser companies, browser, browser security arena, code, people visit, people, worm code, diminutive xss worm, xss worm

Again, On Criticality of Logs

2007-12-07 08:32:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...conclusions about who stole the data and how. If they had collected and analyzed log data centrally, the investigation would have been a piece of cake ," he said in an e-mailed comment to InternetNews.com Indeed, doing disk forensics to know who did what is waaaaaaaaaaaay more painful than checking reliable logs. Save yourself by logging,...

Tags: logs, reliable logs, collect logs, decent logs, security, tjx, security managers, tjx months, log data

Ethics of Autonomous Military Robots

2008-01-28 07:12:35 by schneier in Schneier on Security

...Conclusions, and Future Work This report has provided the motivation, philosophy, formalisms, representational requirements, architectural design criteria, recommendations, and test scenarios to design and construct an autonomous robotic system architecture capable of the ethical use of lethal force. These first steps toward that goal are...

Tags: ethical, ethical constraint set, ethical robotic warfighter, ethics, ethical boundaries, international protocols, war tradition subscribes, war, international

AV Test Report?

2008-01-28 11:33:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

Here is that widely ridiculed anti-virus test report (with >95% average of successful detection My comments a) Make your own darn conclusions b) Credible AV testing is a hard, hard problem About me: http://www.chuvakin.org

Tags: anti-virus test report, darn conclusions, successful detection, hard, org, credible, widely, comments, average

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo