SEARCH RESULTS
 
Showing 1-10 of 16 records
 
Expand article

Memo to Next President: How to Get Cyber Security Right

2008-08-07 15:45:00 by Bruce Schneier in Wired Security
 
...consensus, but security by consensus rarely works. On the internet, security standards are much worse when they're developed by a consensus body, and much better when someone just does them. This doesn't always work -- a lot of crap security has come from companies that have "just done it" -- but nothing but mediocre standards come from...
 
Tags: security, security standards, improvements, security improvements, information security, cyber security plan, research, government research, national security
 
 
 
 
Expand article

Memo to the President

2008-08-12 06:36:31 by schneier in Schneier on Security
 
...consensus, but security by consensus rarely works. On the internet, security standards are much worse when they're developed by a consensus body, and much better when someone just does them. This doesn't always work -- a lot of crap security has come from companies that have "just done it" -- but nothing but mediocre standards come from...
 
Tags: security, security standards, improvements, security improvements, information security, research, government research, cyber security plan, national security
 
 
 
 
Expand article

Vote but Verify

2007-09-07 19:56:11 by Liudvikas Bukys in Liudvikas Bukys
 
...consensus, see the above-quoted NIST draft, the US ACM policy recommendation , or Bruce Schneier (University of Rochester physics alumnus!). Or anything by Ed Felten or Avi Rubin on this subject. In this case, our representatives seem to be listening to informed advisers Regarding politics: All parties oxes have been gored at one time or...
 
Tags: all-electronic systems, systems, all-electronic, paper audit trail, all-electronic paperless approaches, security geek consensus, research topic, consensus, nist
 
 
 
 
Expand article

ORDB offline

2007-01-16 05:38:45 by Administrator in Email security & compliance blog
 
...consensus within the team is that open relay RBLs are no longer the most effective way of preventing spam from entering your network as spammers have changed tactics in recent years, as have the anti-spam community Whether you used their list or not, it is always sad to say goodbye to a good spam fighting effort If you were using ORDB.org to...
 
Tags: ordb, ordb volunteers, relay database ordb, anti-spam community, spam, comprehensive list, list, org, relay rbls
 
 
 
 
Expand article

Diminutive XSS Worm Contest Drama and Status Update

2008-01-06 17:34:38 by RSnake in ha.ckers.org web application security lab
 
...consensus among the submissions are XMLHttpRequest and submit events. Well see how things turn out, but Im quickly getting a feeling these are by far the two most likely candidates for worm propagation. My question is what sort of valid reasons can people come up with on why the browser should automatically submit a form without user...
 
Tags: browser companies, browser, browser security arena, code, people visit, people, worm code, diminutive xss worm, xss worm
 
 
 
 
Expand article

What's holding back NAC?

2008-03-22 01:39:00 by JJ in Security Uncorked
 
...consensus in wording and terminology. NAC is a big undertaking, and when entering a commitment like that, organizations need to know exactly what theyre getting to have that warm and fuzzy feeling Standard Stalls . The ABC users are, for the most part, seeking standards-based solutions. I think we have a great answer to that, and were heading...
 
Tags: nac, product, nac product-, nac vendors domino, solution, nac solution, standards, nac standards, nac industry
 
 
 
 
Expand article

Just let me do my job!

2007-11-29 09:04:00 by Allen Baranov, CISSP in Security Thoughts
 
...consensus is that you will probably disagree with him at some stage, but you have to read his blogs Anyhow, he posted a question from someone at a conference he was at Why can't you InfoSec folks quite simply come to your constituent customers -- the business -- and tell them that your efforts will make me x% more or less profitable My...
 
Tags: business, business relies, information security, information, modern business, entire business worth, information loss, information inside, people
 
 
 
 
Expand article

Are you attending RSA Europe 2007 ?

The Article has images
2007-10-13 17:36:56 by Erik T. Heidt in Art of Information Security
...consensus for the business case. The Quick Business Case is not intended to replace a full Business Case or Business Plan, but is a tool to document an opportunity and determine organizational interest. Of course for some initiatives or organizations, the Quick Business Case may prove sufficient for a final decision. A key goal of the...
 
Tags: business, quick business, six-part presentation, presentation, rsa europe, information security, information security initiative, business plan, innovation
 
 
 
 
Expand article

Parents who say "No" to guns, but also "No" to metal detectors?

2008-04-21 13:53:00 by John Sexton in The Bullet Proof Blog
 
...consensus is building against the machines even at Albert Einstein High School in Kensington, where last week, three loaded guns were found in a locker As if this was not bad enough, the article claims that many school officials view metal detectors as costly, impractical and fallible. Costly? Compared to what? If a metal detector saves even...
 
Tags: school, school shootings, metal detectors, detectors, parents, metal detector, school killings, metal detector saves, time
 
 
 
 
Expand article

How many governments does it take...

2008-05-18 16:30:10 by Editor in Adventures in Security
 
Yes, it's a good idea if the countries of Europe work together for a common defense. And, yes, NATO is a good place to start, extending the efforts across the Atlantic. Yet, none of these countries has been able to unilaterally create an effective defense. My guess is the members of the research center will talk a lot, agree some, disagree some,...
 
Tags: effective defense, countries, research center, common defense, lot, disagree, nato, consensus, arrive