SEARCH RESULTS
 
Showing 1-10 of 12 records
 
Expand article

Declassifying the DES Challenge Software

2007-02-14 00:00:00 by Burt Kaliski in Speaking of Security, the RSA Blog and Podcast
 
...DESCHALL, the program that did the exhaustive key search to solve RSA Laboratories' first DES Challenge in 1997. Rocke had asked participants in the distributed effort to keep his speedups secret for 10 years, due to potential proprietary applications of the software
 
Tags: des challenge, potential proprietary applications, rocke verser, solve rsa laboratories, rocke, exhaustive key, speedups secret, rsa conference, software
 
 
 
 
Expand article

Iowa DNR loses personal information on 7,000

The Article has images
2007-12-19 14:22:00 by Evan Francen in The Breach Blog
...Description An employee of Salem Associates, a contractor working for the Iowa DNR lost a thumb (flash) drive containing sensitive personal information belonging to DNR waster water and drinking water permit and certification applicants Reference URL KCRG-TV News Story Radio Iowa News Story The Des Moines Register Report Credit Mike Wagner,...
 
Tags: iowa dnr, iowa, iowa dnr decides, iowa dnr lost, iowa department, dnr, computer flash drive, drive, information
 
 
 
 
Expand article

More trustworthy election systems via SDL?

2008-02-04 23:34:00 by sdl in The Security Development Lifecycle
 
...des a good overview of voting machine security concerns; and academic studies on voting systems last year in California , Connecticut , Florida , and Ohio provide some interesting insights about security concerns and vulnerabilities in voting systems from several vendors These analyses are fascinating to us, because they offer an opportunity...
 
Tags: machine security concerns, security concerns, election systems, election, security, security researchers, election systems margin, margin, election management system
 
 
 
 
Expand article

Iowa State student information exposed for 6 years?

The Article has images
2008-02-07 14:24:20 by Evan Francen in The Breach Blog
...des Breach Description An Iowa State University professor inadvertently posted confidential personal information belonging to former students through the school's publicly accessible web server (iastate.edu Reference URL The Des Moines Register online story SSNBreach.org Press Release Report Credit SSNBreach.org and the Des Moines...
 
Tags: information, university professor inadvertently, university, protect confidential information, university professor, professor, post public information, iowa, confidential personal information
 
 
 
 
Expand article

Changing the SSL cipher order in Internet Explorer 7 on Windows Vista

2007-11-07 05:37:47 by Steve Riley in Steve Riley on Security
 
...DES EDE CBC SHA TLS ECDHE ECDSA WITH AES 128 CBC SHA P256 TLS ECDHE ECDSA WITH AES 128 CBC SHA P384 TLS ECDHE ECDSA WITH AES 128 CBC SHA P521 TLS ECDHE ECDSA WITH AES 256 CBC SHA P256 TLS ECDHE ECDSA WITH AES 256 CBC SHA P384 TLS ECDHE ECDSA WITH AES 256 CBC SHA P521 TLS ECDHE RSA WITH AES 128 CBC SHA P256 TLS ECDHE RSA WITH AES 128 CBC SHA...
 
Tags: sha, null sha, cbc sha p384, cbc sha, cbc sha p521, shorter bit lengths, bit lengths, cbc sha p256, 256-bit aes
 
 
 
 
Expand article

University of Iowa inadvertently posts personal data to the Internet

The Article has images
2008-01-15 11:25:40 by Evan Francen in The Breach Blog
...Description A list containing sensitive personal information belonging to University of Iowa, May 2006 College of Engineering graduates was inadvertently saved to a server accessible via the Internet. The file was exposed for several months before an external party alerted the university of the breach Reference URL The Des Moines Register...
 
Tags: university, information security risk, information, iowa, sensitive personal information, social security, internet, breach description, financial information
 
 
 
 
Expand article

Techdays 2008, LInnovation Avance Avec Nous

2008-02-01 11:25:48 by mcurphey in Mark Curphey - SecurityBuddha.com
 
...des applications Web, utiliser les ressources du projet OWASP (WEB303)animé par Mark Curphey , Sébastien Gioria Audience : Architectes Décideur technologique Développeur Enseignants et chercheurs Informaticiens Niveau : Confirmé (300) Le lundi 11 février 2008, 11:00 - 12:00. Cette session a pour but de sensibiliser les développeurs aux...
 
Tags: utiliser les ressources, chercheurs informaticiens niveau, projet owasp, gioria audience, cette session, pour, aux, fvrier, lundi
 
 
 
 
Expand article

ATM Communication - How Secure ?

The Article has images
2008-03-21 12:34:00 by Random InfoSec Guy in Security Coin
...DES), what the specifications of the devices that encrypt/decrypt the PIN are (Tamper Resistant Security Modules), how PINs should be exchanged between various Financial Institutions (exchange keys between two FIs out-of-band AND under the principles of dual control and then encrypt the keys, how should compromised - no - even "suspect"...
 
Tags: pin, pin offsets, atm, pin translation, natural pin, key, key management, atm communications, encryption key
 
 
 
 
Expand article

RSA Day 2: Wednesday with JJ & the Engima

The Article has images
2008-04-14 01:35:30 by JJ in Security Uncorked
...DES- so its FIPS 140 compliant Some of the sins from the session Engineering, Development & Management sins Using a good technology in a bad implementation Lack of metrics to indicate misuse Feature/mission creep - using item A for solution B Not teaching people how to use security Teaching them, but teaching bad habits Normalization...
 
Tags: security, inherent security risk, day, security bloggers party, dry session, session, enigma, enigma machines, fathers session
 
 
 
 
Expand article

Measuring Vulnerability

The Article has images
2008-04-14 14:31:38 by JonesJ in