SecurityRatty: tag: installment

How Not to Be Seen II: The Defenders Fight Back

2008-01-07 09:15:52 by Editor in IEEE Security and Privacy

In a previous column ("How Not to Be Seen," vol. 5, no. 1, 2007, pp. 6769), the authors introduced readers to the varied technologies that stealthy software uses. At the end of the column, they promised to take a whirlwind look at stealth detection; this installment fulfills that obligation

Tags: previous column, column, stealth detection, stealthy software, installment fulfills, authors, vol, technologies, whirlwind

Software Security Metrics and Commentary on "Metrics Framework" Paper

2007-09-17 20:41:00 by Security Retentive in Security Retentive

...installment I comment on the metrics from the paper and provide what I believe are reasonable replacement metrics for 5 of the 10 in the paper. In Part-2 I'll take on the next 5 as well as discuss some other thoughts on what metrics matter for measuring web application security The paper is actually a good introduction on how to think about...

Tags: metrics, software security metrics, metrics framework, metrics miss, design-time metric, design, upstream sdl metrics, application, web application security

Mobile Malware wrap-up for 2006

2007-03-11 07:08:33 by Perry Carpenter in Security Renaissance

Alexander Gostev at Kaspersky Labs has been doing a great job summarizing the evolution of mobile malware. His latest installment is a wrap-up for 2006 . If you are into tracking trends in the mobile malware space, this is a must read

Tags: mobile malware, mobile malware space, alexander gostev, wrap-up, kaspersky labs, job, trends, evolution, installment

Defend against targeted attacks - Part 2

2008-04-10 10:51:23 by Editor in Adventures in Security

In this second and final installment, weâre examine how to look for and remediate potential attack paths; attack paths that might only make themselves known during focused and aggressive attack preparation

Tags: potential attack paths, attack paths, aggressive attack preparation, final installment, examine

Four ways to fight off strangers with candy

2008-04-17 00:00:00 by Mark Gibbs in Network World on Security

Users aren't naïve, they are willfully ignorant and the latest installment of a experiment shows just how easily users can undermine IT security. Here's a summary of the survey and four ways to reduce the impact of user ignorance

Tags: users, easily users, user ignorance, experiment, ignorant, nave, survey, undermine, summary

Nobody Is That Dumb ... Oh, Wait X

2008-05-05 14:26:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...installment in my strictly aperiodic "Nobody Is That Dumb ... Oh, Wait" series , a cheap [ but - hopefully! - more humorous ] imitation of the infamous "doghouse Today's entry is about throwing free money and free work [of somebody else, mind you] down the proverbial crapper So, the other day I was at one security conference which had a bit...

Tags: security appliance vendor, vendor, log management vendor, enables loglogic index, loglogic, logs, vendor expo, official support package, free money

Cryptographic Test Correction

2008-05-22 06:22:47 by Editor in IEEE Security and Privacy

...installment of Crypto Corner explores the possibility of safely transferring part of an MCQ's correction burden to the examineein this case, studentswhen sophisticated technological means such as optical character recognition systems aren't available

Tags: crypto corner explores, multiple choice questionnaires, university environment, assessment procedure, mcqs, correction, opinion polls, mcq, widely

The Hidden Difficulties of Watching and Rebuilding Networks

2008-05-22 06:22:47 by Editor in IEEE Security and Privacy

Network protection can be difficult even for experienced IT staff and security researchers. In this installment of Secure Systems, the authors focus on two areas of network defense that are particularly troublesome to manage: network intrusion recovery and ubiquitous network monitoring

Tags: network intrusion recovery, ubiquitous network, network defense, authors focus, secure systems, network protection, security researchers, staff, installment

The Virtues of Mature and Minimalist Cryptography

2008-07-31 13:30:24 by Editor in IEEE Security and Privacy

This installment of Crypto Corner takes a concise look at some of the issues responsible for why cryptography usually ends up looking bad, in practice, and fails to establish the right threat model, let alone realize it. Ultimately, this failure is largely due to a lack of cryptographic competence and the dreaded habit of...

Tags: crypto corner takes, issues responsible, threat model, cryptography, cryptographic competence, ultimately, due, concise, design

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo