SecurityRatty: tag: insufficient

SDL and "End to End Trust"

2008-04-17 00:15:00 by sdl in The Security Development Lifecycle

...insufficient to realize the broader vision Some of you reading may be thinking But wait Eric, this is a security blog so why are you rambling on about your former roles working on speech recognition? Well, there is an analogy Im trying to draw. The point Ive been leading up to is that the SDL plays a similar role in the context of realizing...

Tags: trust, broader, broader discussion, trust portal, technology, technology progress, broader vision, speech recognition, computer speech recognition

Common Criteria and answering the question 'Is it Safe'

2007-12-20 16:57:00 by sdl in The Security Development Lifecycle

...insufficient answer to the question our customers ask Is it Safe? The Security Development Lifecycle is what has made the difference in enabling Microsoft to successfully reduce vulnerabilities in our products If customers expect a real-world answer to the question Is it Safe? to be answered by Common Criteria, then Common Criteria must change

Tags: criteria, fails, common criteria fails, common criteria, common criteria arguably, common, arguably, arguably deficient, security

Wikileaks: Voice of the people or just bad news?

2008-02-20 08:27:18 by Editor in Adventures in Security

...insufficient to prove guilt or to understand all the ramifications of a case. So posting those documents, or a summary of them, without additional supporting evidence can amount to irresponsible behavior

Tags: sufficient evidence, evidence, law enforcement officials, bad guys, documents, irresponsible behavior, prove guilt, issues, experience

Trusted path

2008-04-04 21:18:17 by Editor in Security x.0

...insufficient protection of the PEDs from tampering and partially from communications between the card and the device not being encrypted. This effectively breaks the trusted path between customer's card and the retailer's terminal/card processing network. You can watch the BBC Newsnight program covering this This week we ( Cronto ) have also...

Tags: path, security, security protocol, strong security protocols, protocols, user, user terminals, common, attack vectors

Biometrics would not have prevented SocGen incident

2008-03-07 19:25:37 by Stuart King in Stuart King's Security and Risk Management Blog

...insufficient authentication and access controls were to blame for the incident. What we had was a breakdown in process, supervision, management and audit controls that should have worked together and flagged an issue long before it became newsworthy. Call me what you like but I just don't see that biometrics would have mitigated any of the...

Tags: controls, procedural controls, report, report identifies, audit controls, biometrics, security tosh, strong identification solutions, computer weekly think-tank

Drama surrounds People's United Bank breach

2008-04-08 12:47:21 by Evan Francen in The Breach Blog

...insufficient for information that has a life span which far exceeds this limit He said the bank notified police immediately when it found out what Hastings had. That notification resulted in a search of Hastings home and the seizure of documents Letters are being mailed out to affected customers, DiGiorgio said About four months ago,...

Tags: bank, financial information, information, confidential information, people, bank deposit, hastings, james hastings dove, bank set

Jericho Forum and the Collaboration Oriented Architecture (COA) position paper

2008-05-09 14:16:55 by Burton Group in Security and Risk Management Strategies Blog

...insufficient to support COA. The following elements are also valuable: [Here, I shorten and paraphrase the list of bullet points attribute brokers access brokers contract brokers policy language (like XACML 3.0 performance manager (builds audit logs and reputation systems I wish that the COA position paper had spent more space discussing some...

Tags: coa, coa framework, coa paper focuses, jericho forum, paper, reputation repository, reputation, coa position paper, future jericho forum

Jericho Forum and the Collaboration Oriented Architecture (COA) position paper

2008-05-09 14:16:55 by Burton Group in Security and Risk Management Strategies Blog

...insufficient to support COA. The following elements are also valuable: [Here, I shorten and paraphrase the list of bullet points attribute brokers access brokers contract brokers policy language (like XACML 3.0 performance manager (builds audit logs and reputation systems I wish that the COA position paper had spent more space discussing some...

Tags: coa, coa framework, coa paper focuses, jericho forum, paper, reputation repository, reputation, coa position paper, future jericho forum

A misconfigured laptop, a wrecked life

2008-06-18 00:00:00 by Robert McMillan in Network World on Security

...insufficient evidence to prove he had downloaded the files

Tags: fought criminal charges, laptop, child pornography, insufficient evidence, dell latitude, michael fiola, life, commonwealth, files

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo