SEARCH RESULTS
 
Showing 1-10 of 111 records
 
Expand article

Why Some Terrorist Attacks Succeed and Others Fail

2008-02-28 06:25:13 by schneier in Schneier on Security
 
...Failure of Terrorist Attacks: Selected Case Studies " (Homeland Security Institute, June 2007), the authors examine eight recent terrorist plots against commercial aviation and passenger rail, and come to some interesting conclusions From the "Executive Summary": The analytic results indicated that the most influential factors determining the...
 
Tags: vigilant security services, vigilant, recent terrorist plots, terrorist plots, information fits, information, intelligence information, security services, law enforcement
 
 
 
 
Expand article

Real Fail-over for VMs

2008-03-31 06:38:20 by Editor in Computerworld Security News
 
Mark Hall reports on a product that promises fail-over protection for virtual servers
 
Tags: promises fail-over protection, mark hall reports, virtual servers, product
 
 
 
 
Expand article

Impersonation

2009-01-09 14:04:17 by schneier in Schneier on Security
 
...fail; they can also fail to authenticate the real person. An ATM is better off allowing occasional fraud than preventing legitimate account holders access to their money. On the other hand, a false positive in a nuclear launch system is much more dangerous; better to not launch the missiles Decentralized authentication systems work better...
 
Tags: authentication, authentication fails, authentication systems, impersonation, credit card company, credit card, authentication system, systems, security
 
 
 
 
Expand article

High Availability Security In Your Virtual Environment

The Article has images
2008-03-12 21:41:15 by John Peterson in Security In The Virtual World
...failure mechanisms in them. Customers demanded "Fail Open". Fail Open to a security guy doesn't make a whole lot of sense because it basically says, if there is a problem with the metal detector at the airport, it should just "Fail Open" and let everyone into the gate area to board airplanes I'd rather block all traffic until I know it was...
 
Tags: virtual, physical, physical relay, physical network, virtual security products, security products, network, virtual network, virtual environment
 
 
 
 
Expand article

High Availability Security In Your Virtual Environment

The Article has images
2008-03-12 21:41:15 by John Peterson in Security In The Virtual World
...failure mechanisms in them. Customers demanded "Fail Open". Fail Open to a security guy doesn't make a whole lot of sense because it basically says, if there is a problem with the metal detector at the airport, it should just "Fail Open" and let everyone into the gate area to board airplanes I'd rather block all traffic until I know it was...
 
Tags: virtual, physical, physical relay, physical network, virtual security products, security products, network, virtual network, virtual environment
 
 
 
 
Expand article

Mashup of the Titans

2008-06-25 17:29:25 by Gunnar Peterson in 1 Raindrop
 
...Fail-safe defaults: Base access decisions on permission rather than exclusion. This principle, suggested by E. Glaser in 1965,8 means that the default situation is lack of access, and the protection scheme identifies conditions under which access is permitted. The alternative, in which mechanisms attempt to identify conditions under which...
 
Tags: protection mechanisms, protection mechanisms correctly, information security, information, implements protection mechanisms, information travels, information security people, protection, potential information path
 
 
 
 
Expand article

Biometrics

2009-01-08 12:53:57 by schneier in Schneier on Security
 
...fail in the same way. If there's no way to verify the print came from an actual reader, not from a stored computer file, the system is much less secure A more secure system is to use a fingerprint to unlock your mobile phone or computer. Because there is a trusted path from the fingerprint reader to the stored fingerprint the system uses to...
 
Tags: biometric systems, biometric, biometric database, hard biometric, biometrics, fingerprint reader, fingerprint, biometric identification system, vastly improve security
 
 
 
 
Expand article

The Security Mindset

2008-03-25 05:27:19 by schneier in Schneier on Security
 
...fail. It involves thinking like an attacker, an adversary or a criminal. You don't have to exploit the vulnerabilities you find, but if you don't see the world that way, you'll never notice most security problems I've often speculated about how much of this is innate, and how much is teachable. In general, I think it's a particular way of...
 
Tags: security mindset, mindset, security mindset immediately, security mindset explains, security mindset simply, security, security mindset involves, involves, security requires
 
 
 
 
Expand article

The Security Mindset

2008-03-25 05:27:19 by schneier in Schneier on Security
 
...fail. It involves thinking like an attacker, an adversary or a criminal. You don't have to exploit the vulnerabilities you find, but if you don't see the world that way, you'll never notice most security problems I've often speculated about how much of this is innate, and how much is teachable. In general, I think it's a particular way of...
 
Tags: security mindset, mindset, security mindset immediately, security mindset explains, security mindset simply, security, security mindset involves, involves, security requires
 
 
 
 
Expand article

IPS - is it soup yet? Mike Chapple says yes and no

The Article has images
2008-05-13 20:25:13 by HASH0x84725a8 in StillSecure, After All These Years
...failure. Being smart about which rules are set and grouping attacks to trigger a minimum amount of rules is key. I have seen rule sets where one kind of attack can trigger multiple signatures. This will fire more blocks than necessary and burden your system for no reason. Don't overlap your rule sets if you are using Snort Consider using a...
 
Tags: ips, line devices, devices, ips appliances, ips devices, mike, rules set, rules, mike chapple