SEARCH RESULTS
 
Showing 1-5 of 5 records
1
 
Expand article

Communicating about risk - part 1

The Article has images
2008-05-05 18:12:14 by JonesJ in RiskAnalys.is
...Fragile conditions A fragile condition exists when the following characteristics co-exist Threat event frequency is high Vulnerability is low, but dependent on a single effective control Probable loss magnitude is significant At a glance, this will look similar to an unstable condition. In this case however, a single control is all that...
 
Tags: risk, effective, cost-effective risk management, fragile condition exists, condition, unstable condition, risk qualifiers, risk condition, risk chart perspective
 
 
 
 
Expand article

Paranoia Acting Up or Just Being Reasonable?

2008-05-28 13:37:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...fragile the foundations of our civilization are, go read the book So, is there any public bodycount of people killed by bad (low quality OR insecure) software ? All those robot gun victims, runaway robot trans, PC-controlled radiation therapy equipment? It's got to be in the hundreds by now... I thought RISKS list was doing it, but I can't...
 
Tags: software developer, runaway robot trans, robot gun victims, radiation therapy equipment, software, low quality, risks list, public bodycount, time
 
 
 
 
Expand article

Hacking Mifare Transport Cards

2008-08-07 06:07:02 by schneier in Schneier on Security
 
...fragile. Mifare's security was based on the belief that no one would discover how it worked; that's why NXP had to muzzle the Dutch researchers. But that's just wrong. Reverse-engineering isn't hard. Other researchers had already exposed Mifare's lousy security. A Chinese company even sells a compatible chip . Is there any doubt that the bad...
 
Tags: mifare, design, design secrecy, mifare classic chip, secrecy, security, secrecy supports security, security properly, chip
 
 
 
 
Expand article

Boston Court's Meddling With 'Full Disclosure' Is Unwelcome

2008-08-21 04:00:00 by Bruce Schneier in Wired Security
 
...fragile. It assumes that the bad guys don't do their own security research. It assumes that no one else will find the same vulnerability. It assumes that information won't leak out even if the research results are suppressed. These assumptions are all incorrect The problem isn't the researchers; it's the products themselves. Companies will...
 
Tags: computer security improves, security improves, computer security, security, mit security researchers, security devices, security holes, disclosure, security properly
 
 
 
 
Expand article

Full Disclosure and the Boston Farecard Hack

2008-08-26 06:04:49 by schneier in Schneier on Security
 
...fragile. It assumes that the bad guys don't do their own security research. It assumes that no one else will find the same vulnerability. It assumes that information won't leak out even if the research results are suppressed. These assumptions are all incorrect The problem isn't the researchers; it's the products themselves. Companies will...
 
Tags: computer security improves, security improves, computer security, security, mit security researchers, security devices, security holes, disclosure, security properly
 
 
 
 
 
Showing 1-5 of 5 records
1
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia