SecurityRatty: tag: consistency

Can Moodys solve your third party assessment problem?

2008-05-28 12:36:33 by Khalid Kark in Security & Risk Management

...consistency across assessments. It was refreshing to see this service from Moodys that endeavors to take the burden off of your shoulders If this service delivers on its promise and is able to gain traction, it has the potential to move others in the industry to follow its approach. Although I think this is a great idea, here are some things...

IT Risk Management

2008-03-28 13:09:26 by Marc Othersen in Security & Risk Management

...consistency and clarity to this discipline, Forrester is developing an IT risk management framework. Once developed, the framework will help IT organizations identify major risk areas, identify scenarios linking risks and controls, and establish a common risk language to clearly communicate with business leaders In order for the framework to...

Tags: risk management, risk, risk management framework, risk events, major risk, risk assessment, key risk indicators, framework, risk response

WPF Layout Tips

2007-12-20 08:38:00 by Keith Brown in Security Briefs

...consistency. I'm finding it so intuitive to navigate, and just plain fun to use. The other day I was trying to build something that behaved similarly to an ASP.NET repeater control. I wanted to use a data template to specify the presentation of each item, and I wanted the list of items to be presented using a WrapPanel. Pretty simple, you'd...

Tags: layout, image, simple image, control, net repeater control, wpf, infinite space, image stretches, space

The STRIDE per Element Chart

2007-10-29 23:06:46 by sdl in The Security Development Lifecycle

...consistency, so we can deliver consistent products and messages to our customers. We also need to encourage customization and specificity, so that the process is as prescriptive as we can make it. Doing so allows you to make it more prescriptive, appropriate and evocative for your users

Tags: element chart, chart, stride, specific, specific threats, cve data, data, stride chart, threats

The Hannaford PCI Fallout

2008-03-28 13:07:12 by Marc Othersen in Security & Risk Management

...consistency of compliance audits 3) Lawsuits abound. Cardholders may form a class action lawsuit against Hannaford for failing to protect their information. Hannaford may sue its PCI auditors for damages caused by inadequate audits 4) Organizations may want a second opinion. Organizations governed by PCI may, in the short term, pay for...

Tags: pci, current pci standard, pci standard, pci compliance auditors, pci audit, normal pci auditors, hannaford, standard, pci auditors

What's holding back NAC?

2008-03-22 01:39:00 by JJ in Security Uncorked

...consistency and consensus in wording and terminology. NAC is a big undertaking, and when entering a commitment like that, organizations need to know exactly what theyre getting to have that warm and fuzzy feeling Standard Stalls . The ABC users are, for the most part, seeking standards-based solutions. I think we have a great answer to that,...

Tags: nac, product, nac product-, nac vendors domino, solution, nac solution, standards, nac standards, nac industry

Microsoft Security Intelligence Report 2H07

2008-04-23 14:03:16 by jrjones in Jeff Jones Security Blog

...consistency, and applicability. Retroactively applying the new formula to vulnerabilities disclosed in previous years classifies a much higher percentage of vulnerabilities as High-severity than was previously the case. The vulnerabilities disclosed in 2007 continue this trend, with High-severity vulnerabilities accounting for about half of...

Tags: score vulnerabilities, vulnerabilities, report, security intelligence report, high-severity vulnerabilities, trend, disclosures, level trend chart, vulnerability disclosures

Oracle Critical Patch Update for April 2008

2008-04-18 10:00:35 by Adrian Lane in Information Centric Security

...consistency both because Oracle has trained me to look for it, and subsequently can plan the deployment of the patch into my normal workflow

Tags: release security patches, oracle, patches, security, april, regular schedule, pretty happy, normal workflow, patch

Corrupted Heap Termination Redux

2008-06-07 04:00:00 by sdl in The Security Development Lifecycle

...consistency with the rest of the heap. They are chained in a double linked list so corruption can be detected by walking the list Buffer overrun: the next block header size does not match the expected current block size Buffer underrun: same as above, but the previous block header size does not match the expected current block size Attempting...

Tags: heap, free block list, block, handle, bogus heap handle, invalid, invalid heap, custom heap, block header

Data security and the "chasm of protection"

2008-06-17 13:25:00 by Manu Namboodiri in Data Protection, Management and Leakage

...consistency in the protection of that data element, thereby removing this "chasm

Tags: protection, data, data protection, data centers, data element, application, pos application, data-centric, in-store application

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo