SEARCH RESULTS
 
Showing 1-8 of 8 records
1
 
Expand article

The ID Divide

2008-06-04 06:34:45 by schneier in Schneier on Security
 
...Proponents of, say, a merger (or in our case, a new identification program) can err on the side of optimism, concluding too readily that the merger (or new ID program) is clearly the way to go. Thorough due diligence protects against such over-optimism In the pages that follow, we apply this due diligence process to some recurring technical...
 
Tags: identification technologies, identification, identification programs, identification systems, due diligence, due diligence insights, process, due diligence process, identification program
 
 
 
 
Expand article

Do you trust the merchants to protect your credit cards?

2007-12-11 09:01:26 by Khalid Kark in Security & Risk Management
 
...proponents of this proposal state that the banks already keep and protect all of the information and hence, they would not have to put additional security measures in place. Merchants would need to retain a non-sensitive (and useless to identity thieves) transaction/approval numbers, rather than very sensitive cc numbers and identifying info....
 
Tags: card industry, card, payment card industry, credit card, merchants, credit card companies, provide merchants, merchants change, security
 
 
 
 
Expand article

OMG, Security ROI Comes Back - And It is Mad As Hell :-)

2008-03-11 00:58:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...proponents "hit hard" in return : 'One is Jos Pols who, in his recent article The Fallacy of Information Security ROI in the February 2008 issue of the ISSA Journal (membership required to access link resource), claims that one cannot have a return where there is no income. .' They next bring back the "return in the form of savings" (which...
 
Tags: security, roi, security roi war, pro-roi counter-point, roi proponents, information security roi, roi war, issa journal, return
 
 
 
 
Expand article

Author: The Grand Fantasies That Ruined National Security

2008-03-21 19:00:00 by Threat Level in Wired Security
 
Fred Kaplan, author of Daydream Believers , talks about the proponents of networked war, missile defense and other "grand ideas" that "wrecked American power
 
Tags: daydream believers, author, grand ideas, missile defense, american power, fred kaplan, talks, war, proponents
 
 
 
 
Expand article

How do you present your security proposition?

The Article has images
2008-04-04 21:18:18 by Editor in Security x.0
...proponents of the visual delivery style, making great use of images to amplify delivered messages. Could this style improve the chances of communicating effectively security to business I am sure most will agree on which of the following presentation slides is most likely to bore the audience to death So, why not make your presentation a...
 
Tags: security, web application security, security professionals, effectively security, presentation, presentation slides, visual, visual delivery style, security vendor
 
 
 
 
Expand article

Should You Install Messaging Security Software on Your Exchange Server?

2008-08-04 13:00:00 by Editor in Computerworld Security News
 
...proponents and opponents of these approaches, there seems to be relatively strong opposition to the last approach on the part of many email administrators Osterman Research shares insights gleaned from a just completed survey that dispel the fears of employing server-based email security solutions. Read this white paper to help you...
 
Tags: security, security solution, email security solutions, software, exchange security risks, capabilities, sunbelt software, single critical task, anti-virus capabilities
 
 
 
 
Expand article

If a tree falls in someone else's silo...

2008-09-08 12:29:57 by Gunnar Peterson in 1 Raindrop
 
...proponents claim loudly that their part is strong, but the ring has no strength. Eventually, one of the claims in the links is broken. For phishing, the browsers never did have the potential to show authenticity; not only did they not have the security strength to do it (c.f., Skype v. CSRF ), they didn't even do it in practice (recall the...
 
Tags: silo, design, design systems, systems, brittle claims, claims, computer systems, legacy silo, banks
 
 
 
 
Expand article

Is PCI DSS "Too Prescriptive"?

2008-09-22 15:43:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...proponents of "PCI is too prescriptive" tend to think that fuzzier guidance (and, especially, prescribing the desired end state AND not the tools to be installed) will lead to people actually thinking about the best way to do it So the choices are Mandate the tools (e.g. "must use a firewall") - and risk "checklist mentality", resulting in...
 
Tags: pci, pci dss, compliance, compliance fun, pci compliance, compliance checklists, fun, security, regulatory compliance
 
 
 
 
 
Showing 1-8 of 8 records
1
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia