SEARCH RESULTS
 
Showing 1-10 of 212 records
 
Expand article

A->C->I ...

2008-02-25 16:55:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...piece of security reading from Richard (not that he has any other kind ...): " First They Came for Bandwidth Here is the key piece, but do read the whole piece First they came for bandwidth Next they came for secrets Now they are coming to make a difference... " Not sure how it is significant, but the above follows A (availability)->C...
 
Tags: key piece, piece, bandwidth, secrets, org, confidentiality, difference, richard, availability
 
 
 
 
Expand article

Stealing from Bookstores

2008-03-13 13:06:23 by schneier in Schneier on Security
 
...piece of paper. "Do you have any Buck?" He paused and looked at the piece of paper. "Any books by Buckorsick?" I suspected that he meant Bukowski, but I played dumb, and asked to see the piece of paper he was holding. It was written in crisp handwriting that clearly didn't belong to him, and it read Charles Bukowski Jim Thompson Philip K....
 
Tags: piece, folded-up piece, charles bukowski, bukowski, books, paper, book thief, authoritative top, values
 
 
 
 
Expand article

NAC for grown-ups

The Article has images
2008-03-13 23:06:10 by HASH0x89079f8 in StillSecure, After All These Years
...piece in a magazine or e-zine that comes across looking like a real piece of journalism and is really a thinly veiled advertisement for your company's products. Some people say my blog could be put in the same boat. If that is how you feel, so be it, I am not going to waste time arguing about it with you Gord's gist seems to be that users...
 
Tags: network users, network users arrogant, network, network administrators, nac, users, nac solution, nac product, product
 
 
 
 
Expand article

NAC for grown-ups

The Article has images
2008-03-13 23:58:00 by ashimmy in StillSecure, After All These Years
...piece in a magazine or e-zine that comes across looking like a real piece of journalism and is really a thinly veiled advertisement for your company's products. Some people say my blog could be put in the same boat. If that is how you feel, so be it, I am not going to waste time arguing about it with you Gord's gist seems to be that users...
 
Tags: network users, network users arrogant, network, network administrators, nac, users, nac solution, nac product, product
 
 
 
 
Expand article

Software Security Metrics and Commentary - Part 2

2007-10-23 20:31:00 by Security Retentive in Security Retentive
 
...piece I'll try to cover the remaining 5 metrics as well as discuss a few thoughts on translating survivability/Quality-of-Protection into upstream SDL metrics First, onto the other five metrics from the paper Injection Flaws Again, I think the metric posited in the paper is too tilted towards incident discovery rather than prevention. Just...
 
Tags: security metrics, software security metrics, metrics, software, metrics framework, metric, upstream sdl metrics, concrete metric, paper steve bellovin
 
 
 
 
Expand article

Metrics and Audience

2008-04-19 09:52:00 by Security Retentive in Security Retentive
 
...piece of software vs. another, what that software is going to cost to buy and run, etc For the security community what we're looking for is a metric that more closely tracks the "real" security properties of a piece of software. How hard it is for the expert to attack, how it does in real world deployments, etc Unfortunately no one metric...
 
Tags: software, software metric, software security folks, security folks, software security initiatives, security, measure software security, measure, metrics
 
 
 
 
Expand article

802.1X-REV: Ya' Heard it Here First!

2008-05-09 14:59:51 by JJ in Security Uncorked
 
...piece, well be able to use the key exchange as a means of quickly (in ~4-5 packets) authenticating (or re-authenticating) switches to one another after a reboot. It will be a critical piece for maintaining availability and integrity in the network. And w e can do this piece without a hardware upgrade, which is pretty nifty 2) Same-Port...
 
Tags: 1x-rev, 1x-rev sauce starts, 1x-rev sauce, support, same-port multiuser support, endpoint encryption support, rev, endpoint, encryption
 
 
 
 
Expand article

Pre-post on "Logging: Day 1"

2008-07-10 15:36:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...piece on "Log Management: Day 1" (obviously, inspired by this and this here ), I hear that more and more people are thrust into a situation where my piece will be of huge value, thus this pre-announcement So, if you are given a task to "tackle logs" for your organization, where should you start? What should you do first? Even, how do you...
 
Tags: piece, log management, tackle logs, day, blog content, shitty idea, thrust, chuvakin, organization
 
 
 
 
Expand article

The Economics of Finding and Fixing Vulnerabilities in Distributed Systems

2008-11-18 22:47:55 by Gunnar Peterson in 1 Raindrop
 
...piece of a business, and Margin of Safety Mr. Market is a fictional, teaching device invented by Graham. You imagine that you have a somewhat manic depressive business partner called Mr. Market. Every day, Mr. Market comes into the office and offers you quotes on companies, some days he is in a good mood and the prices are high, other days...
 
Tags: information security, information, information security spends, safety information security, versus information security, information security budgets, information security budget, software security, software security space
 
 
 
 
Expand article