SEARCH RESULTS
 
Showing 1-10 of 78 records
 
Expand article

Practical Data Analysis and Reporting with BIRT

The Article has images
2008-03-28 10:49:00 by Richard Bejtlich in TaoSecurity
...Practical Data Analysis and Reporting with BIRT . John was responsible for writing the reports we provided to customers of our network security monitoring service. He used that experience as a reason to learn more about BIRT , the Business Intelligence and Reporting Tools Eclipse-based reporting system If you have any interest in using an...
 
Tags: practical data analysis, birt, reports, taosecurity, book faster, book, network security, richard bejtlich, john
 
 
 
 
Expand article

Intel ROSI Paper: Sets Practical Guidelines and Proper Expectations

2008-01-24 11:00:35 by Kenneth F. Belva in BlogInfoSec.com
 
...practical counter to the non-ROSI / non-ROI arguments that seem to crop-up from time to time Heres a link to Matt on video discussing Intels Security ROSI. Copyright 2008 BlogInfoSec.com . This feed is copyrighted by bloginfosec.com. The feed may be syndicated only with our permission. If you feel that this feed is being syndicated by a...
 
Tags: security, information security investment, non-security management, security incident, security control, control, security incidents, incidents, paper
 
 
 
 
Expand article

PED vulnerability paper receives Most Practical Paper award at Oakland

The Article has images
2008-05-21 09:56:48 by Saar Drimer in Light Blue Touchpaper
...Practical Paper award of the conference, given to the paper most likely to immediately improve the security of current environments and systems. Thanks to everyone who supported this work
 
Tags: paper, practical paper award, pin entry devices, ieee symposium, ped, ross anderson, immediately improve, current environments, pin scheme
 
 
 
 
Expand article

Not a CISSP

The Article has images
2008-04-18 14:36:41 by Chris Eng in Zero in a bit
...practical abilities. Employers and customers often assume the guy with the five magic letters on his resume is technically superior to the guy without. In my experience, its exactly the opposite, particularly in situations where you have to sit down at a keyboard and actually DO something as opposed to talking about it. Certainly, Ive...
 
Tags: cissp, cissp certification, security, cissp button, network security, information security, security career, career, cissp title
 
 
 
 
Expand article

Links for 2008-02-25 [del.icio.us]

2008-02-26 00:00:00 by Editor in Anton Chuvakin Blog -
 
...practical risk management: Gartner IT GRC Predictions practical risk management: 2008 - The Year of IT Risk Management Spire Security Viewpoint: Another Envelope: Vulnerability Growth Rates Calculations: * [C1] Number of new lines of code created every day -- 2m * 25 = 50 million [A1]*[A2] * [C2] Number of new vulnerabilities created every...
 
Tags: log management, log, security, spire security viewpoint, risk management, practical risk management, application due care, application, security layers
 
 
 
 
Expand article

Just Because Youre An Expert Doesnt Make You An Expert

2008-04-29 01:14:34 by rmogull in securosis.com
 
...practical network security knowledge When doing risk assessments or practical, on-the-ground security, make sure you engage the right domain experts before you break something. You may have kung-fu, but that doesnt mean you arent a total freaking idiot
 
Tags: doctor, doctor inserts pillow, head, head pain, patients, dumb ass doctor, patients c-spine, rollover car accident, car
 
 
 
 
Expand article

Protect Your Macintosh Copies Available

2008-05-02 11:12:49 by schneier in Schneier on Security
 
...practical value in the book. This offer should only interest collectors. And even them, not that much I also have seven copies of my third book, E-Mail Security , from 1995, which also has nothing in it of any practical value anymore. Again, $5 for postage
 
Tags: copies, book, e-mail security, postage, e-mail, practical, macintosh, protect, lonely death
 
 
 
 
Expand article

Train Like You Fight

2008-05-12 20:54:11 by rmogull in securosis.com
 
...practical scenarios that emulate, as closely as possible, the chaos of the real world How many of you can honestly say your incident response, disaster recovery, or business continuity tests come close to emulating the real world? Its why I despise over-reliance on tabletop tests that prove nothing. Its why I really like programs like the...
 
Tags: real, test real attack, practice, diligent practice, response, defense response skills, train, real world, incident response
 
 
 
 
Expand article

J-PAKE: From Dining Cryptographers to Jugglers

2008-05-29 20:31:05 by Feng Hao in Light Blue Touchpaper
 
...practical security problem: how to establish secure communication between two parties solely based on their shared password without requiring a Public Key Infrastructure (PKI The solution to the above problem is very useful in practice in fact, so useful that it spawns a lot fights over patents. Many techniques were patented, including the...
 
Tags: pake, past pake solutions, pake research, j-pake protocol, j-pake, protocol, protocol design inherits, security, practical security
 
 
 
 
Expand article

Art vs. Science

2008-06-20 20:56:38 by Chris Eng in Zero in a bit
 
...practical field experience A client chastised me once for making a statement that penetration testing is a mixture of art and science. He wanted to believe that it was completely scientific and could be distilled down to a checklist type approach. I explained that while much of it can be done methodically, there is a certain amount of skill...
 
Tags: security, security professionals, security professional, tssci security blog, science, test, opcp test, james, art