SecurityRatty: tag: practical

PED vulnerability paper receives Most Practical Paper award at Oakland

2008-05-21 09:56:48 by Saar Drimer in Light Blue Touchpaper

...Practical Paper award of the conference, given to the paper most likely to immediately improve the security of current environments and systems. Thanks to everyone who supported this work

Tags: paper, practical paper award, pin entry devices, ieee symposium, ped, ross anderson, immediately improve, current environments, pin scheme

Not a CISSP

2008-04-18 14:36:41 by Chris Eng in Zero in a bit

...practical abilities. Employers and customers often assume the guy with the five magic letters on his resume is technically superior to the guy without. In my experience, its exactly the opposite, particularly in situations where you have to sit down at a keyboard and actually DO something as opposed to talking about it. Certainly, Ive...

Tags: cissp, cissp certification, security, cissp button, network security, information security, security career, career, cissp title

Links for 2008-02-25 [del.icio.us]

2008-02-26 00:00:00 by Editor in Anton Chuvakin Blog -

...practical risk management: Gartner IT GRC Predictions practical risk management: 2008 - The Year of IT Risk Management Spire Security Viewpoint: Another Envelope: Vulnerability Growth Rates Calculations: * [C1] Number of new lines of code created every day -- 2m * 25 = 50 million [A1]*[A2] * [C2] Number of new vulnerabilities created every...

Tags: log management, log, security, spire security viewpoint, risk management, practical risk management, application due care, application, security layers

Protect Your Macintosh Copies Available

2008-05-02 11:12:49 by schneier in Schneier on Security

...practical value in the book. This offer should only interest collectors. And even them, not that much I also have seven copies of my third book, E-Mail Security , from 1995, which also has nothing in it of any practical value anymore. Again, $5 for postage

Tags: copies, book, e-mail security, postage, e-mail, practical, macintosh, protect, lonely death

J-PAKE: From Dining Cryptographers to Jugglers

2008-05-29 20:31:05 by Feng Hao in Light Blue Touchpaper

...practical security problem: how to establish secure communication between two parties solely based on their shared password without requiring a Public Key Infrastructure (PKI The solution to the above problem is very useful in practice in fact, so useful that it spawns a lot fights over patents. Many techniques were patented, including the...

Tags: pake, past pake solutions, pake research, j-pake protocol, j-pake, protocol, protocol design inherits, security, practical security

Art vs. Science

2008-06-20 20:56:38 by Chris Eng in Zero in a bit

...practical field experience A client chastised me once for making a statement that penetration testing is a mixture of art and science. He wanted to believe that it was completely scientific and could be distilled down to a checklist type approach. I explained that while much of it can be done methodically, there is a certain amount of skill...

Tags: security, security professionals, security professional, tssci security blog, science, test, opcp test, james, art

Orkut XSS Worm

2007-12-20 16:18:37 by RSnake in ha.ckers.org web application security lab

...practical and real world worm code so we can all see it. Google has fixed this issue, but it is unclear what the fallout of the damage will be

Tags: orkut, worm, post, community, orkut community, post scrapbook, xss worm, post requests, worm code

Exaggerating Timing Attack Results Via GET Flooding

2007-12-10 04:04:33 by RSnake in ha.ckers.org web application security lab

...practical applications in hacking for DoS and this appears to be one of them - at least in theory

Tags: server load, server, requests, practical applications, time, bandwidth latency, url, times versus, difference

Intellectual Property- what is it and how do we secure it?

2007-12-29 06:43:45 by Editor in Security Links

...practical and authoritative books on the subject. Whether you are looking for a book covering the TRIPS Agreement or the Nice Treaty, then you will find it here Intellectual Property Law, 4th Edition Holyoak and Torremans: Intellectual Property Law, Fourth Edition Contemporary Intellectual Property: Law and Policy International Patent...

Tags: intellectual property, treaties, international patent treaties, major copyright agreements, agreements, copyright, rights, intellectual property rights, copyright legislation

Covert channel vulnerabilities in anonymity systems

2007-12-10 10:39:42 by Steven J. Murdoch in Light Blue Touchpaper

...practical solutions to problems in real-world anonymity systems. These findings confirm the existing hypothesis that covert channel analysis, vulnerabilities and defences developed for multilevel secure systems apply equally well to anonymity systems Steven J. Murdoch, Covert channel vulnerabilities in anonymity systems, Technical report...

Tags: covert, covert channel vulnerabilities, vulnerabilities, network covert channels, covert channels, channels, covert channel, anonymity systems, systems

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo