SEARCH RESULTS
 
Showing 1-10 of 55 records
 
Expand article

Adware and Spyware Such a Pain

2007-08-01 19:17:00 by jack in adware and spyware
 
...Pain Spywares and adwares are not only annoying but more often than not tend to damage your computer software and sometimes can even cause some damage to your hardware too. These annoying bugs have become a bane for internet browsers worldwide. They have become a normal occurrence that we sometimes tend to ignore but God forbid we should...
 
Tags: spyware programs, decent anti-spyware programs, anti-spyware programs regularly, anti-spyware programs, spyware, free, popular free anti-spyware, spyware program, spyware program offer
 
 
 
 
Expand article

Reliability Vs. Security

2007-12-07 16:46:00 by sdl in The Security Development Lifecycle
 
...painted a picture of the disaster scenarios we spend a heroic amount of effort trying to avoid and talked about the technical and organizational challenges to getting it right. But after the talk, the discussion centered on a broader topic: is security more difficult to achieve than reliability? Afterwards, a gaggle of professors from five...
 
Tags: folks, reliability folks deal, reliability, reliability folks, security, bugs, reliability bugs, reliability analysis, software reliability
 
 
 
 
Expand article

700,000 records on stolen CCB server

The Article has images
2008-04-22 14:57:38 by Evan Francen in The Breach Blog
...Pain, Advanced Physical Therapy, Alternative Care Experience, Anderson General Surgery, Andrew Dick MD, Anesthesia, Aqua Systems, Associated Billing, "Barbara Sturm, MD", Brad Sammons DDS, Brien Grow DO, Buchanan Counseling Services, Campion Barrow & Assoc., Cardiothoracis Surgeons, Cardiovascular Diagnostic Services, Carl Foster MD, Caryn...
 
Tags: dds, gary taylor dds, gary hunt dds, lawrence falender dds, joseph meek dds, caryn guba dds, mark ellis dds, sarah akard dds, ccb
 
 
 
 
Expand article

Improve Security with "A Layer of Hurt"

2008-07-31 19:13:00 by sdl in The Security Development Lifecycle
 
...pain = new Malform fileData = pain.Fuzz(fileData endif In both code examples, Fuzz() mutates the incoming data. In the C++ case, the fuzzing code looks like this void Fuzz( Inout bytecap (*pcbBuf) char *pBuf Inout size t *pcbBuf if (!pcbBuf || !pBuf || !*pcbBuff || *pBuf) return if ((rand() % 100) > 5) return; // fuzz about 5% of Buffers...
 
Tags: layer, code layer, code, decent code coverage, fuzz, void fuzz, ifdef fuzz, code examples, perform fuzz
 
 
 
 
Expand article

"High-level" vs Fluffy vs Dumb vs Irrelevant?

2007-11-28 14:54:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...pain (I have given a few exec-level presentations in my time), I also think there is another underlying cause for this: basically, people do not want their execs to know what is going on Third : " ... executives at big companies can't comprehend at a 1st grade level. That's a load of crap. Fortune class executives understand exactly what the...
 
Tags: executives, 1st grade level, fortune class executives, fortune, presentations, exec-level presentations, executive data presentation, blog discussion, dumb
 
 
 
 
Expand article

Don't Try This At Home

2007-11-05 21:52:28 by sdl in The Security Development Lifecycle
 
...pain. Id like to explain why Designing security mitigations is a skill. If Im trying to design a database, my personal lack of database skills will be obvious: it will be slow, it might lose data, and well discover theres a problem very quickly. In contrast, if Im designing a cryptosystem, I might not be able to break my own design. This is a...
 
Tags: mitigations, custom mitigations, security mitigations, innovative mitigations, software projects, software, expert, design, design principles
 
 
 
 
Expand article

The Trouble with Threat Modeling

2007-09-26 19:11:00 by sdl in The Security Development Lifecycle
 
...pain. You want expert advice, and you want the experts to agree Most of the threat modeling processes previously taught at Microsoft were long and complex, having as many as 11 steps. Thats a lot of steps to remember. There are steps which are much easier if youre an expert who understands the process. For example, asset enumeration. Lets say...
 
Tags: threat, threat models, threat model, reasons threat, service threat, term threat, threat effectively, playsound threat model, development process
 
 
 
 
Expand article

IATAC and SDL

2007-09-14 03:09:00 by sdl in The Security Development Lifecycle
 
...pain, decisions made, and effectiveness of what you're doing and using that information as a catalyst for change As with any report, there are points on which reasonable people will differ however, it does a reasonably good job at presenting one-stop shopping for information on software security assurance. Its definitely worth a look Id be...
 
Tags: sdl, software security assurance, software development process, microsoft business recently, report, microsoft, note significant mentions, hamilton recently, closer inspection
 
 
 
 
Expand article

Fun Info on Pain Rays

2008-01-16 19:43:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
Representative quote : "The femtosecond laser they used is not quite capable of causing agony at the receiving end About me: http://www.chuvakin.org
 
Tags: representative quote, femtosecond laser, capable, org, chuvakin, agony
 
 
 
 
Expand article

Fear Is Unhealthy

2008-01-17 07:35:09 by schneier in Schneier on Security
 
...pain that terrorist attacks inflict on victims and society, when statisticians look at cold numbers, they have variously estimated the chances of the average person dying in America at the hands of international terrorists to be comparable to the risk of dying from eating peanuts, being struck by an asteroid or drowning in a toilet But...
 
Tags: people terrorists kill, terrorists, terrorism, actual terrorism, kill, people, fear, million people, fearful people