SecurityRatty: tag: guidance

White House issues updated guidance to federal agencies for safeguarding sensitive information

2007-05-30 00:00:00 by Shannon Kellogg in Speaking of Security, the RSA Blog and Podcast

...guidance to federal agencies for both safeguarding sensitive data and responding to a data breach if one occurs. The memo, entitled Safeguarding Against and Responding to the Breach of Personally Identifiable Information " was sent by Clay Johnson, Deputy Director of Management at OMB, to the heads of executive departments and federal...

Tags: federal agencies, federal agencies respond, guidance, data breach, profile data breaches, breach, executive departments, deputy director, omb

Hacking tool guidance finally appears

2007-12-31 17:50:32 by Richard Clayton in Light Blue Touchpaper

...guidance on what should be considered before bringing prosecutions under s3A of the Computer Misuse Act, when amendments to it come into force probably April 2008 (for reasons that I discussed last July What is at issue is so-called hacking tools, and the problem arises because almost every hacking tool you can think of from perl to nmap is...

Tags: bad, bad people download, cma offence, offence, bad guys, guys, offence stage, tool, article widely

WCF Security Guidance from P&P

2008-04-04 06:09:00 by Keith Brown in Security Briefs

...Guidance Project is in progress on CodePlex. This is our first release of prescriptive guidance modules for WCF Security How Tos Our How Tos give you step by step instructions for performing key tasks How To - Create and Install Temporary Certificates in WCF for Message Security During Development How To - Create and Install Temporary...

Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider

WCF Security Guidance from P&P

2008-04-04 12:09:00 by keith-brown in Security Briefs

...Guidance Project is in progress on CodePlex. This is our first release of prescriptive guidance modules for WCF Security How Tos Our How Tos give you step by step instructions for performing key tasks How To - Create and Install Temporary Certificates in WCF for Message Security During Development How To - Create and Install Temporary...

Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider

WCF Security Guidance from P&P

2008-04-04 12:09:00 by keith-brown in Security Briefs

...Guidance Project is in progress on CodePlex. This is our first release of prescriptive guidance modules for WCF Security How Tos Our How Tos give you step by step instructions for performing key tasks How To - Create and Install Temporary Certificates in WCF for Message Security During Development How To - Create and Install Temporary...

Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider

Ask the Auditor: Who is Responsible for Information Security?

2007-12-29 06:24:50 by Editor in Security Links

...guidance is issued every few years. These classics offer important knowledge relevant to all security stakeholders. The following list represents several classics, as well as some very new information, from a variety of leading resources relating to information security and its control and auditing. Information Security Resources 1. The...

Tags: information, information security, information policy, information security risks, information assurance, information security governance, information security managers, information security management, assign information security

Tax information exposed in trash

2008-04-07 13:20:28 by Evan Francen in The Breach Blog

...guidance on "IT Audit, Governance & Security", and I question how valuable this guidance is sometimes. I don't want to discount the information security guidance given by all accountants because to do so would be unfair. I have seen many cases where an organization has put too much credence in the guidance of unqualified accounting firms. On...

Tags: information, tax information, employees information, information security, information security guidance, guidance, information security professional, security, include names

Microsoft SDL Process in detail

2008-04-09 19:13:00 by sdl in The Security Development Lifecycle

...guidance that can be repurposed for their own organizations and finally, some folks are convinced that we are deliberately holding back some security secret sauce for some reason. Go figure With that, let me cut to the chase. Today, we have made the Microsoft Security Development Lifecycle, version 3.2 available for your perusal on MSDN. This...

Tags: sdl, microsoft sdl, sdl process, microsoft, sdl guidance, guidance, secure, secure software development, development

Intellectual Property- what is it and how do we secure it?

2007-12-29 06:43:45 by Editor in Security Links

...guidance, then the doublyauthoritative manual, International Copyright and Neighbouring Rights: The Berne Convention and Beyond, Second Edition , is highly recommended. This is a two book set from Oxford University Press (OUP) which offers highly intelligent insights and guidance into the complex issue of copyright law. Additionally, copies...

Tags: intellectual property, treaties, international patent treaties, major copyright agreements, agreements, copyright, rights, intellectual property rights, copyright legislation

NERC CIP Rules Out - Logs In!

2008-01-24 13:06:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...guidance) and there is an enforcement body (NERC) that can make life miserable for those not complying Here are some log-related examples from the guidance R5.1.2 . The Responsible Entity shall establish methods, processes, and procedures that generate logs of sufficient detail to create historical audit trails of individual user account...

&nbs

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo