SecurityRatty: tag: desire

Some Comments on PayPal's Security Vulnerability Disclosure Policy

2007-11-27 18:07:00 by Security Retentive in Security Retentive

...desire to know about the security of a given website or service. That said, we're committed to working with researchers when an issue is reported to us and we'll decide reasonable on a case-by-case basis We're hoping that this policy strikes a good balance between our desire for responsible disclosure, and not discouraging researchers from...

Playing With Homemade Explosives

2007-08-07 17:30:00 by Eric Marvets in The Security Samurai

...desire to live and stay out of trouble. For example, one of the first things I learned was remote detonation systems. The first one I employed was a catapult, built from popsicle sticks, a metal spoon, and rubber bands which could launch a cotton ball soaked in alcohol 20 ft. The catapult itself could even be operated remotely by using a...

Tags: gas, lawn mowers gas, tank, cars gas tank, time, time delay fuse, terrorist, empty gas, recent terrorist plots

Yet another benefit of executive support for SDL...

2007-11-15 23:04:00 by sdl in The Security Development Lifecycle

...desire) to protect customers has not waned one bit. As a result, we have some great opportunities for talented Program Managers, Developers and Testers who are passionate about security and want to make Microsoft products and the ecosystem as a whole as secure as possible If you're a motivated type with strong security chops and looking to...

Tags: community, security researcher community, security, security tools, security efforts, security tool development, windows security assurance, security science team, team

Making Threat Modeling Work Better

2007-10-17 00:23:53 by sdl in The Security Development Lifecycle

...desire is great, but it leads to some issues, first and foremost is that many of the people who are now involved arent security experts. This means that they lack both direct experience of the process and the background that informs it. This isnt a slam on them. I lack experience in the database design process, and I dont have years of...

Tags: threat, process, process helps ensure, developers threat model, database design process, security, trust boundaries, threat model, security experts

Cyber Storm Details

2008-02-07 14:30:23 by schneier in Schneier on Security

...desire, 'Let's show them what we can do,'" said George Foresman, a former senior Homeland Security official who oversaw Cyber Storm. "Whether its intent was embarrassment or a prank, we had to temper the enthusiasm of the players See also this . CyberStorm report here

Tags: cyber storm, oversaw cyber storm, game computers, computers, players, overzealous players, information technology, war game, urgent e-mail

In-depth investigation with computer forensics

2008-02-12 00:00:00 by HASH0x8bba50c in Network World on Security

Despite new security threats, such as smarter malware, compliance and proof of best endeavor requirements, the desire for a holistic security strategy that covers everything from policy to prevention is currently not being met by the security industry

Tags: holistic security strategy, endeavor requirements, security threats, smarter malware, security industry, compliance, prevention, desire, proof

Inflecting end-user awareness

2006-12-03 20:27:35 by RaviC in Musings on Information Security

...desire to impart and design the training to effect the same 4. Reward good security behaviors 5. Leverage your existing marketing communications (and other cross functional departments) to run the program 6. Monitor compliance across various business units, show them them the comparative chart - this will create a healthy competition 7....

Tags: program, end-user awareness program, program based, segment program, informative handout, handout, security awareness initiative, business units, behavioral change

Implementing the Event Cloud

2008-04-13 14:01:56 by Greg Reemler in The Complex Event Processing Blog

...desire to process and extract meaningful information from the event cloud For example, there are many voices in a crowdedstadium. These voices make up the sound cloud (or maybe you prefer the term voice cloud), in a manner of speaking. The trick is to have the processing capability to listen to the sound cloud and detect opportunities and...

Tags: cloud, event cloud, term voice cloud, toprocess event clouds, event clouds, sound cloud, extract meaningful, weprocess event clouds, extract meaningful information

5 Reasons Why IT Security People Shouldnt Ignore Cloud Computing

2008-04-22 22:17:55 by Craig Balding in Cloud Security

...desire. Cloud Computing has hit the cover of popular business magazines - its starting to get on the radar of CEOs that ask questions like how can I cut my costs?, how can I make my business more agile?. They may not switch overnight, but once the first goes in a given vertical, the clock is ticking The temptation to contractually outsource...

Tags: cloud, security, cloud storage provider, in-house, in-house security operations, cloud security, employers security arrangements, cloud provider, outsource security responsibility

10 Myths About Life As An IT Security Professional

2008-04-25 23:08:41 by Craig Balding in Security Wannabe

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo