SecurityRatty: tag: consequences

The Impact of Dans DNS Debacle on Internet Risk

2008-07-30 08:11:30 by Burton Group in Security and Risk Management Strategies Blog

...consequences (we will cover consequences, then vulnerabilities, and finally threat Consequences Though the consequences are the same before and after disclosure, it is worth discussing the impact here, given that the implication was that the entire web could be taken down. The nature of the attack requires the following An attacker must...

The Impact of Dan???s DNS Debacle on Internet Risk

2008-07-30 08:11:30 by Burton Group in Security and Risk Management Strategies Blog

...consequences (we will cover consequences, then vulnerabilities, and finally threat Consequences Though the consequences are the same before and after disclosure, it is worth discussing the impact here, given that the implication was that the ???entire web??? could be taken down. The nature of the attack requires the following An attacker must...

Tags: dns, impact, major dns vendors, risk impact revolves, dns servers, servers, risk, dns server implementations, major dns

SDL Training

2008-05-29 15:22:00 by sdl in The Security Development Lifecycle

...consequences (security is a great career path at Microsoft, and nobody wants to be the one holding up a ship schedule for failure to meet a security requirement Where tools and resources to accomplish the goals are available (we build a whole variety of tools that map to the SDL requirements Where management models the behavior (recall the...

Tags: real behavior change, behavior, sdl, change peoples behavior, security, security guy, security defects, defects, security class

Stop Me if This Sounds Familiar

2008-11-02 22:30:30 by Gunnar Peterson in 1 Raindrop

...consequences of the consequences. People start by trying to hedge against interest rate changes, which is very difficult and complicated. Then, the hedges make the [reported profits] lumpy. So they use the new derivatives to smooth this. Well, now you've morphed into lying. This turns into a Mad Hatter's Tea Party. This happens to vast,...

Tags: derivatives book, book, derivatives, derivative books, books, derivatives blowup, derivatives operations, blowup, favorite book

Can I just comment out these lines of code?

2008-05-23 10:53:20 by Burton Group in Security and Risk Management Strategies Blog

...consequences . The specific code, which was generating error messages in a certain software quality assurance tool , happened to be a critical part of the random number generator in a cryptographic library package . By removing this code, the strength of the cryptographic key material was reduced to a point where cracking the key would take...

Tags: process purportedly, process, fix specific process, software development process, commercial development process, code, low-assurance process, development, specific

Can I just comment out these lines of code?

2008-05-23 10:53:20 by Burton Group in Security and Risk Management Strategies Blog

...consequences . The specific code, which was generating error messages in a certain software quality assurance tool , happened to be a critical part of the random number generator in a cryptographic library package . By removing this code, the strength of the cryptographic key material was reduced to a point where cracking the key would take...

Tags: process purportedly, process, fix specific process, software development process, commercial development process, code, low-assurance process, development, specific

Is fear the only think stopping you from telling your security vendor to take a hike?

2008-06-20 16:40:47 by HASH0x8b72460 in StillSecure, After All These Years

...consequences of failure. But really isn't success and failure two heads of the same coin. Aren't the rewards of success and the consequences of failure a zoroastic type of Yin and Yang So if in the final analysis, success and failure are intrinsically linked there really is nothing wrong with saying security sales are motivated by fear,...

Tags: fear, security, useless products, products, security vendors, useless security products, useless, failure, success

Is fear the only think stopping you from telling your security vendor to take a hike?

2008-06-20 17:40:47 by ashimmy in StillSecure, After All These Years

...consequences of failure. But really isn't success and failure two heads of the same coin. Aren't the rewards of success and the consequences of failure a Zoroastic type of Yin and Yang So if in the final analysis, success and failure are intrinsically linked. There really is nothing wrong with saying security sales are motivated by fear,...

Tags: fear, security, useless products, products, security vendors, useless security products, useless, failure, success

Finland privacy judgment

2008-07-23 15:26:48 by Ross Anderson in Light Blue Touchpaper

...consequences. Privacy compaigners, for example, can now argue strongly that the NHS Care Records service is illegal. And what will be the further consequences for the Transformational Government initiative - the Database State

Tags: privacy, hospitals access controls, effective protection test, effective protection, medical privacy, access, health care staff, care, law

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo