SecurityRatty: tag: evans

Feds move on cybersecurity, with privacy in mind

2008-02-29 00:00:00 by HASH0x8b19050 in Network World on Security

...Evans, who serves as the de facto federal CIO in her capacity as administrator of e-government and IT at the White House Office of Management and Budget. In an interview with Computerworld Friday, Evans discussed the hearing and parts of the Cyber Initiative, including the involvement of the National Security Agency (NSA) and a plan to...

Tags: security, national security agency, government, government officials, cyber initiative, homeland security held, e-government, white house office, facto federal cio

Auditing open source software

2007-10-08 16:13:00 by Panayiotis Mavrommatis in Google Online Security Blog

...Evans, Security Team Google encourages its employees to contribute back to the open source community, and there is no exception in Google's Security Team. Let's look at some interesting open source vulnerabilities that were located and fixed by members of Google's Security team. It is interesting to classify and aggregate the code flaws...

Tags: image, malicious image file, libtiff image, values, jpeg image, tiff header values, source, evil tiff file, evil

10,501 USAF members informed of missing laptop

2008-01-01 00:15:46 by Evan Francen in The Breach Blog

...Evans, a 24 year USAF veteran When you trust someone with that, you expect better When someone gets a hold of a computer, they can wreck things It's in the best interests of businesses and the government to know as much about us as possible. If a few people get compromised along the way, oh well; it's the cost of doing business Evan] I can...

Tags: sensitive personal information, personal information, air force, air force base, laptop, personal information home, usaf band, air force officials, band

ZDNet Asia and TorrentReactor IFRAME-ed

2008-03-04 09:15:20 by HASH0x8b3f7c8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...evans-sara-real-fine-place/index.html. The script checks whether the document.referrer string contains the name of any major search engines. If successful the browser redirects to ppcan.info/mp3re.php and eventually to spam; otherwise, the browser stays at the current doorway page. To defeat the simple client-side cloaking, issuing a query of...

Tags: iframe, zdnet asia, pages, pages redirect, iframe-ed pages, torrentreactor, iframe-ing tactic remains, seo practices, torrentreactor seo practices

Notes from IEEE Web 2.0 Security and Privacy Workshop (W2SP2008)

2008-05-27 22:45:00 by Security Retentive in Security Retentive

...Evans . Privacy Protection for Social Networking Platform Adrienne presented some work she's done on weaknesses in the security model of social networks and paltforms such as Facebook. She analyzed a bunch of Facebook applications to understand whether they really ought to be granted all of the rights over user data that they are. She...

Tags: browser, browser security models, browser project, browser security model, security models, browser security, security, web, security challenges

FISMA Report Card News, Formulas, and 3 Myths

2008-05-27 16:36:28 by rybolov in The Guerilla CISO

...Evans Quote from Alan Paller about how FISMA is a failure and checklist-driven security Wondering when the government will get their act together Have a read of Danchos response to the FISMA Report Card. Pretty typical writing formula that youll see from journalists. I wont even comment on the FISMA compliance title. Oh wait, I just did Some...

Tags: report card, fisma report card, fisma, fisma measures, fisma compliance title, fisma report cards, security, security programs based, framework

Feds moving ahead on effort to reduce Internet connections, but with adjusted target

2008-07-10 13:00:00 by Editor in Computerworld Security News

Karen Evans, the de facto federal CIO, said that a security initiative to downsize the number of external Internet connections at government agencies is progressing, although the number of links left in the end will be larger than initially planned

Tags: external internet connections, facto federal cio, government agencies, security initiative, evans, larger, links

BlackHat Picks, Day 2

2008-08-04 17:48:24 by Chris Eng in Zero in a bit

...Evans in the lineup. Choices, choices 16:45-18:00 Option 1: Bruce Dang , Methods for Understanding Targeted Attacks with Office Documents. Option 2: Christopher Tarnovsky , Inducing Momentary Faults Within Secure Smartcards/Microcontrollers Lots of intriguing hardware talks on Day 2. A lot of it is probably over my head and my first options...

Tags: day, option, attacks, concurrency attacks, cisco ios forensics, msp430 microcontroller firmware, day job, alexander sotirov, impress girls

BlackHat Picks, Day 2

2008-08-04 17:48:24 by Chris Eng in Zero in a bit

...Evans in the lineup. Choices, choices 16:45-18:00 Option 1: Bruce Dang , Methods for Understanding Targeted Attacks with Office Documents. Option 2: Christopher Tarnovsky , Inducing Momentary Faults Within Secure Smartcards/Microcontrollers Lots of intriguing hardware talks on Day 2. A lot of it is probably over my head and my first options...

Tags: day, option, attacks, concurrency attacks, cisco ios forensics, msp430 microcontroller firmware, day job, alexander sotirov, impress girls

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo