SecurityRatty: tag: difficulty

The Return on Investment for Securing Information

2007-08-13 00:00:00 by Sean Kline in Speaking of Security, the RSA Blog and Podcast

...difficulty in quantifying a business initiative, like extending services through new distribution channels via federation, may be relatively low. Quantifying traditional ROI metrics, on the other hand, may range in difficulty. The value of risk reduction may be more amorphous

Tags: traditional roi metrics, roi, strategic drivers, distribution channels, difficulty, investment, risk reduction, return, business initiative

PrincipalPermissionAttribute and Static ctor Leads to DoS

2007-12-03 09:03:00 by Keith Brown in Security Briefs

...difficulty using PrincipalPermissionAttribute at the class level in a certain scenario under WCF. I recommended caution in my guidebook , because of the nasty type load exception that you can run into if the first request to the class is denied by the attribute Be careful about using this attribute at the class level. If the class to which...

Tags: class sensitive, sensitive, class, class level, static constructor, inside static constructor, class program, static constructor leads, static void

Which CAPTCHA Do You Want to Decode Today?

2007-11-28 15:22:59 by HASH0x89f1f84 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...difficulty of breaking it. CAPTCHA decoding is listed for the following services : 9you, tiancity, cncard, the9, kingsoft, taobao, dvbbs, shanda, csdn, chinaren, monter, and baidu . The hardest to break CAPTCHAs mentioned are those of Yahoo, Hotmail, QQ, Google. Moreover, Ticketmaster's the most expensive one, followed by Ebay's CAPTCHA...

Tags: captcha, diy captcha breakers, malicious parties, service, web service basis, process, directly decode, future customers, decent level

Show 017 - An Interview with Eric Cole

2007-08-24 20:19:43 by rmacmich in The Silver Bullet Security Podcast

...difficulty of certifying software developers Secure Anchor Security Haven Stego-marking packets to control information leakage on TCP/IP based networks - Erics dissertation

Tags: security roi, security, network security practitioners, eric, eric cole, computer security, network security, eric discuss, secure anchor

NSA Backdoors in Crypto AG Ciphering Machines

2008-01-11 06:51:20 by schneier in Schneier on Security

...difficulty. A decade after the end of WWII, the NSA, also known as No Such Agency, had rigged the Crypto AG machines in various ways according to the targeted countries. It is probably no exaggeration to state that this 20th century version of the "Trojan horse" is quite likely the greatest sting in modern history We don't know the truth...

Tags: crypto, machines, company, swiss company, company web site, century, 20th century version, military messages, countries

Lock-In

2008-02-12 06:08:15 by schneier in Schneier on Security

...difficulty of switching to a competing product. For some products -- cola, for example -- there's no lock-in. I can drink a Coke today and a Pepsi tomorrow: no big deal. But for other products, it's harder Switching word processors, for example, requires installing a new application, learning a new interface and a new set of commands,...

Tags: lock-in, software, software development kit, custom software, software company, security, hardware, special security hardware, security mechanism

Information abuse: How far should you trust your users?

2008-02-25 14:47:42 by Editor in Adventures in Security

...difficulty in detecting that a problem might exist. For example, an employee accessing a politician's financial records might be authorized to do so as part of her daily activities. Without additional information as to why the data are accessed, management is unable to respond appropriately. So what safeguards can an organization use to help...

Tags: information, additional information, respond appropriately, respond, single person, financial records, data, daily activities, unable

Snoop Dogg's out-of-shape bodyguard

2008-03-17 03:50:00 by John Sexton in The Bullet Proof Blog

...difficulty getting up from the floor and was visibly huffing and puffing simply from the effort of getting up on his feet As I told the radio show, he was not the type of individual who would be hired by Sexton Executive Security, at least not in his current unhealthy state. How can one be expected to protect a client if they are in such...

Tags: snoop dogg, wjfk radio week, radio, bodyguard, personal protection specialists, protection, week, sexton executive security, unfit

Security in Montana

2008-03-17 13:17:19 by schneier in Schneier on Security

Three items The first is about the difficulty of implementing REAL ID in areas so remote they don't have a permanent DMV. The second is about airport security at airports so remote they average only two passengers per flight . The third -- and this is the best -- is Brian Schweitzer, Montana's governor, speaking about his opposition to REAL ID

Tags: montana, permanent dmv, remote, airport security, brian schweitzer, real, passengers, difficulty, opposition

End user security psychology, part I: Are small mobile computers less secure than larger mobile computers?

2008-03-27 11:30:35 by Bill Nagel in Security & Risk Management

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo