SecurityRatty: tag: flow

Getting into the Flow With Threat Modeling

2007-10-11 23:25:00 by sdl in The Security Development Lifecycle

...flow originated with Mihaly Csikszentmihalyi. It refers to a state where people are energetically involved with what theyre doing. Seeing this a few times during threat modeling sessions made it obvious when it was missing, and it was missing often. I set out to address some of the elements that seemed to make threat modeling harder. The...

Information flow tracing and software testing

2007-09-17 09:32:00 by Niels Provos in Google Online Security Blog

...flow tracing using dynamic analysis. Primarily, this work has been aimed at malware and exploit detection and defense. However, none of the resulting software has been made publicly available While Flayer is still in its early stages, it is available for download under the GNU Public License. External contributions and feedback are encouraged

Tags: input, flayer marks, initial input samples, flayer, fuzz, fuzz testers require, checks, dynamic analysis framework, sanity checks

Monitor mail flow with the Exchange Server 2007 Queue Viewer tool

2008-03-26 12:13:35 by Brien Posey, Contributor in WhatIs: Enterprise IT tips and expert advice

Learn how to use the Exchange Server 2007 Queue Viewer tool to monitor mail flow and get details on five messaging queues that function as email repositories

Tags: queue viewer tool, monitor mail flow, exchange server, email repositories, function, queues, details

Making Threat Modeling Work Better

2007-10-17 00:23:53 by sdl in The Security Development Lifecycle

...flow. It explains exactly how and why I changed a couple of elements of the process. The first is the brainstorming meeting, and the second is the way trust boundaries may be placed The brainstorming meeting is a mainstay of expert threat modeling. Its pretty simple: you put your security experts in a room with system diagrams and a...

Tags: threat, process, process helps ensure, developers threat model, database design process, security, trust boundaries, threat model, security experts

NetFlow and Visibility in the Virtual Environment

2008-03-31 23:21:54 by John Peterson in Security In The Virtual World

...flow Over the past week or so I've begun speaking with VMWare customers and Netflow enabled vendors like Mazu Networks (who has an awesome product) and they both have been struggling to figure out an elegant way of gaining visibility into the VM to VM communication within the virtual infrastructure. You see, in the physical world people turn...

Tags: virtual, virtual environment, environment, virtual infrastructure, virtual switch, virtual firewall, virtual security product, physical world, world

Netflow visibility inside Virtual Environments

2008-04-22 18:07:24 by John Peterson in Security In The Virtual World

...flow. Netflow was originally developed by Cisco Systems but has since become a defacto standard for Network Monitoring and Network Behavioral Analysis. Companies such as Lancope , Mazu Networks , Plixer International and Arbor Networks all have products that enable network visibility, monitoring and analysis. These tools typicaly take Netflow...

Tags: virtual network communication, communication, virtual network, virtual environment communication, netflow, network communication, visibility, network, enable network visibility

NetFlow and Visibility in the Virtual Environment

2008-03-31 23:21:54 by John Peterson in Security In The Virtual World

...flow Over the past week or so I've begun speaking with VMWare customers and Netflow enabled vendors like Mazu Networks (who has an awesome product) and they both have been struggling to figure out an elegant way of gaining visibility into the VM to VM communication within the virtual infrastructure. You see, in the physical world people turn...

Tags: virtual, virtual environment, environment, virtual infrastructure, virtual switch, virtual firewall, virtual security product, physical world, world

Netflow visibility inside Virtual Environments

2008-04-22 18:07:24 by John Peterson in Security In The Virtual World

...flow. Netflow was originally developed by Cisco Systems but has since become a defacto standard for Network Monitoring and Network Behavioral Analysis. Companies such as Lancope , Mazu Networks , Plixer International and Arbor Networks all have products that enable network visibility, monitoring and analysis. These tools typicaly take Netflow...

Tags: virtual network communication, communication, virtual network, virtual environment communication, netflow, network communication, visibility, network, enable network visibility

The New Threat Modeling Process

2007-10-02 01:15:35 by sdl in The Security Development Lifecycle

...flows (which connect all the other elements b. Draw trust boundaries between components. You can do this on a whiteboard, in Visio, or in one of the specialized threat modeling tools weve built. (A trust boundary is anywhere that more than one principal can access an object, such as a file or process c. If your trust boundary crosses...

Tags: process, threat, process validation entails, threat model, software process diagram, people, people trust boundaries, love threat, hamster wheel

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo