SEARCH RESULTS
 
Showing 1-10 of 96 records
 
Expand article

Show 002 - An Interview with Dan Geer

The Article has images The Article has audio podcast
2006-06-12 17:28:07 by rmacmich in The Silver Bullet Security Podcast
...Dan Geer, Chief Scientist at Verdasys . Dan has a Ph.D. in biostatistics from Harvard. He and Gary discuss the need to understand both technology and business in order to be a good security practitioner, Dans paper Cyber Insecurity, his work on Project Athena, and livestock A partial transcript of the interview in IEEE Security & Privacy Dan...
 
Tags: dan, dan geer, ieee security, project athena, wikipedia, gary discuss, partial transcript, security practitioner, privacy
 
 
 
 
Expand article

Dan Geer on Security, Monoculture, Metrics, Evolution, Etc.

2008-05-27 06:23:23 by schneier in Schneier on Security
 
...Dan Geer's remarks at Source Boston 2008 , basically a L0pht reunion with friends. At the end of the day, however, we are facing a much bigger, more metaphysical question than the ones I have so far posed. That I can pose many others is of no consequence; either you are sick of them by now or you are scribbling down your own as I speak. The...
 
Tags: world, security, dan geer, security geeks, bigger, bigger question, possibility, l0pht reunion, metaphysical question
 
 
 
 
Expand article

Dan Wallach on Electronic Voting Machines

2008-07-02 06:15:27 by schneier in Schneier on Security
 
...Dan Wallach has an excellent blog post about the current line of argument from the voting machine companies and why it's wrong. Unsurprisingly, the vendors and their trade organization are spinning the results of these studies, as best they can, in an attempt to downplay their significance. Hopefully, legislators and election administrators...
 
Tags: dan wallach, attacks, excellent blog post, vendors, vendors behavior, equipment, procedures, machine companies, texass dres
 
 
 
 
Expand article

NAPA Shows How the Government is Using Web 2.0

2008-07-16 20:45:37 by Julia Lim in ScienceLogic
 
...Dan Munz, project manager of the Collaboration Project commented on the unique work that the National Academy of Public Administration (NAPA) is doing to bring together government leaders. The Collaboration Project seeks to innovate across government not just down the silos and create a safe place for leaders to have discussions around...
 
Tags: web, government, web page, government web, collaboration, mass collaboration, collaboration project seeks, government employees, enhance government transparency
 
 
 
 
Expand article

Ask the Auditor: Who is Responsible for Information Security?

2007-12-29 06:24:50 by Editor in Security Links
 
...Dan Swanson answers the question of who is responsible for information security By Dan Swanson A Reader Asks: Who is responsible for information security The Auditor Responds: In short, the board of directors, management (of both staff and business lines), and internal audit functions all have significant roles in auditing information...
 
Tags: information, information security, information policy, information security risks, information assurance, information security governance, information security managers, information security management, assign information security
 
 
 
 
Expand article

No, I Dont Know the Answer to the Big DNS Secret

2008-07-09 15:26:37 by Chris Eng in Zero in a bit
 
...Dan Kaminskys latest DNS vulnerability fluffed a few feathers yesterday The good news is that due to the nature of this problem, it is extremely difficult to determine the vulnerability merely by analyzing the patches; a common technique malicious individuals use to figure out security weaknesses The typical response I heard was what do you...
 
Tags: design, excellent design protects, excellent design, dan, dan kaminsky, dan bernstein, tom ptacek, attack surface, attack
 
 
 
 
Expand article

Blue Box #70: 2-yr Anniversary show, VoIP security vulnerabilities, Vonage, Comcast, phishing, listener comments and much, much more...

2007-11-07 22:52:27 by Dan York in Blue Box: The VoIP Security Podcast
 
...Dan York and Jonathan Zar covering VoIP security news, comments and opinions Download the show here (MP3, 21MB) or subscribe to the RSS feed to download the show automatically You may also listen to this podcast right now NOTE: This show was recorded on October 25, 2007 Show Content 00:20 - Intro to the show, contact information and how to...
 
Tags: voip security, voip security vulnerabilities, voip security news, voip, voip security podcast, consumer voip, vulnerabilities, sans voip security, sans
 
 
 
 
Expand article

MetriCon 3.0

2008-06-13 07:27:39 by Gunnar Peterson in 1 Raindrop
 
...Dan Geer Four grouped sessions to follow; each has three at-most-20 minute presentations of ideas followed by 30 minutes of reaction from discussants and general interaction with all MetriCon attendees Breaks are short as is life Lunch, which is in-room, is long enough but no longer Dinner,which is in-room, is as long as people want...
 
Tags: metrics, cis metrics program, great-wests metrics program, security metrics, security, security analytics, security risk metrics, actionable security, program
 
 
 
 
Expand article

Yes! Now I Can Attend Nate Lawsons Talk at BlackHat!

2008-07-22 03:14:11 by Chris Eng in Zero in a bit
 
...Dans plea that people not speculate about the vulnerability. As many pointed out, the bad guys wont stop trying to figure it out just because the good guys keep quiet. To be honest, my own lack of public speculation wasnt because I agreed with the philosophy; I just wasnt smart enough to figure out the vulnerability myself People implied or...
 
Tags: blackhat, vulnerability, dns vulnerability, details, technical details, dan, dan kaminsky, subsequent blackhat talk, security community
 
 
 
 
Expand article

Is there any reason to go to Black Hat still?

The Article has images
2008-07-23 07:58:05 by HASH0x8b10820 in StillSecure, After All These Years
...Dan Kaminsky's research was exemplary, but his naivete about people keeping the exploit under thier hat was not. While Thomas Matasano apologized for his mistake , frankly from the moment Havlar Flake begain speculating on it, it was just a matter of time Anyway, the cat is out of that bag, but something tells me that Dan K's presentation...