SecurityRatty: tag: integrity

File Integrity Monitoring: Secure Your Virtual and Physical IT Environments

2008-08-25 13:00:00 by Editor in Computerworld Security News

...Integrity Monitoring Solution? With the numerous servers, devices and applications organizations rely on to support their everyday business, outages and security breaches due to poor IT configurations are unacceptable. In addition, many organizations must now prove compliance with standards like PCI DSS designed to protect systems and...

Tags: file integrity, applications organizations rely, organizations, enables organizations, security breaches due, solution, undesirable configuration change, maintain compliance, numerous servers

Windows Integrity Mechanism: more than you ever wanted to know

2007-07-13 17:49:09 by Steve Riley in Steve Riley on Security

A while back, the technology in Vista called mandatory integrity control got a new name: Windows integrity mechanism. Recently the folks responsible for developing the technology have posted a good amount of documentation on it. Read the Windows Vista Integrity Mechanism Technical Reference for all the details

Tags: windows integrity mechanism, mandatory integrity control, folks responsible, technology, recently, details, vista, amount, documentation

Contrasting Privacy & Integrity Models

2008-04-02 13:19:29 by Adrian Lane in Information Centric Security

There was a comment on Rich Mogulls blog page after he posted Principles of Information Centric Security about existing models for security and integrity, and comments on novelty. I think that is worth delving into in a bit more detail

Tags: information centric security, security, models, integrity, bit, worth, novelty, comments, detail

A Question of Integrity: To MD5 or Not to MD5

2008-06-25 19:50:57 by Craig Balding in Cloud Security

...integrity and corruption Stepping back, will customers hold Cloud Service Providers to a higher standard than their own internal IT teams Im sure there are more takeaways I didnt cover. What say you Kudos for the heads-up on the S3 issue goes to my friend and colleague Jason Harper - network supremo and crypto-head. Thanks Jason

Tags: amazon prior, amazon, aws, aws status page, md5, load balancer, single load balancer, status, data

The C-I-A Triad weighed and found wanting

2007-04-12 04:54:18 by Perry Carpenter in Security Renaissance

...Integrity, and Availability) are being challenged and supplanted by a more inclusive model known as the Parkerian Hexad [1]. The Parkerian Hexad augments the traditional C-I-A triad by adding three elements. The result is a set of security principles comprised of six elements The six principles of the Parkerian Hexad are Confidentiality...

Tags: information security, information, parkerian hexad, parkerian hexad model, control information, principles, security principles, personal health information, parkerian hexad augments

Know the Difference Between a NAC Client and a 1X Supplicant

2008-06-05 17:01:00 by JJ in Security Uncorked

...Integrity Agent provided as part of their NAC solution. The NAC Client is a software agent that sits on the endpoint and collects statement of health or posture of the endpoint and communicates that back to whatever NAC controller youre using. (Most of these guys offer some type of agent-less or transient-agent posture checking too, but this...

Tags: client, nac client license, nac, nac client licenses, nac solution, nac client, supplicant, licenses, supplicant licenses

Links for 2008-02-01 [del.icio.us]

2008-02-02 00:00:00 by Editor in Anton Chuvakin Blog -

...Integrity, LLC: GRC 2.0 - The GRC.EcoSystem GRC 2.0 - The GRC.EcoSystem expands on the original vision. Obviously, the definition and market of GRC needs an overhaul. And that is what I present to you today in draft form - GRC 2.0 - the GRC.EcoSystem Corporate Integrity, LLC: Understanding GRC Individually, I use the following standard...

Tags: ecosystem, ecosystem expands, ecosystem grc, grc, log management approach, platform, splunk platform, splunk, components

Squirreling Backdoors Into Distribution Points

2007-12-19 22:16:35 by Chris Eng in Zero in a bit

...integrity checking. The minute the Xiaoyun Wang paper on MD5 collisions was released, every security practitioner in the world considered MD5 unsafe from that point forward. Even though practical attacks had not yet been formulated, the writing was on the wall. Unfortunately, the rest of the world either didnt notice or didnt care...

Tags: md5 collisions, md5, md5 hashes, distribution, php, execute php code, execute, code, md5 unsafe

Catch not-so-smart hackers to send message to smart hackers

2007-05-10 07:00:33 by RaviC in Musings on Information Security

...Integrity and Availability of software/hardware. The adjective "smart" in the phrase "smart hackers" distinguishes those hackers who can compromise Confidentialy, Integrity and Availability in such a way that they leave minimal or no audit trail There are technical controls [tools such as Vontu ] available to monitor deviant computer usage of...

Tags: not-so-smart hackers, hackers, not-so-smart, smart, smart hackers, employee, smart-deviant employee, hackers interact, smart hacker

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo