SecurityRatty: tag: reduce

Hospitals reduce cost of electronic medical records

2008-01-15 00:00:00 by Jon Brodkin in Network World on Security

Replacing paper medical records with electronic ones can reduce errors, and save lives, but cost and complexity prevents most doctors from upgrading

Tags: paper medical records, cost, complexity prevents, reduce errors, save lives, electronic, doctors

Smaller footprint, less risk

2007-08-13 22:01:00 by Bryan in practical risk management

...Reduce exposure to make it less likely the event will happen Take steps to reduce the impact you'll sustain if it does happen Risk purists will argue that you can also transfer the risk, but I'd argue that's really just an extension of #2... In the transferred risk model, we let another entity - like an insurance company - share some of the...

Tags: sensitive information, information, reduce exposure, reduce, controls, classic preventative controls, risk, design controls, exposure

SDL and the XSS Filter

2008-08-27 15:35:00 by sdl in The Security Development Lifecycle

...reduce vulnerability to XSS attacks. Our focus has been on improving the ways that web page developers code their pages, and weve developed a lot of tools and techniques for making web content safer from XSS attacks and for detecting XSS vulnerabilities in live pages. The SDL requires the use of many of these tools and techniques, and were...

Tags: xss, xss filter, xss vulnerabilities, xss led, anti-xss library, xss attack, xss attacks, attacks, xss filter remembers

Security is not all about Security Updates

2007-12-17 12:58:00 by sdl in The Security Development Lifecycle

...reduce the number of vulnerabilities that creep into the software's design and code. I want to emphasize this point because this is the single most important goal of the SDL: To reduce the number of vulnerabilities in software products. This is not about who can fix bugs faster, SDL is about reducing the chance that vulnerabilities are added...

Tags: security, end-user security documentation, security response, fix security bugs, response, security fix, implementation vulnerabilities, vulnerabilities, security feature development

Should We Treat Contractors The Same as Employees?

2008-03-26 13:47:43 by Alex in RiskAnalys.is

...reduce the Frequency of Loss Events for our populations (W2, 1099). Now for any threat community, we can do one of three things 1.) Reduce the Frequency of Contact This is really either blocking, cordoning, obfuscation, what have you. For W2s and 1099s our ability to reduce Frequency of Contact may be limited 2.) Reduce the Probability of...

Tags: threat, threat communities, threat agent applies, threat agents, threat event results, threat community, employees, risk tolerance, risk

Models and Reductionism - Reducing Clouds Into Streams

2008-04-14 01:17:58 by Greg Reemler in The Complex Event Processing Blog

...reduce complexity CEP was envisioned todiscover causal relationships in complex, uncertain,cloudydataand the current state-of-the-art of software from the streaming SQL vendors do not have this capability, unless you reduce all event models to ordered sets of streaming data (reduce POSETS to TOSETS Reductionismcan bea valid technique, of...

Tags: complex event, complex, software tools, software, cep, cep products, reduce complex, cep software, reduce posets

Oh No! Security Metrics!

2008-04-18 12:43:00 by sdl in The Security Development Lifecycle

...reduce the number of patches they need to apply to their products once in deployment. It costs them time and money to deploy security updates. The primary metric that matters to customers is the number of security updates they need to apply. And the only way to reduce the number of updates is to systematically reduce the number and severity...

Tags: bugs, implementation bugs, fewer security bugs, fewer, security bugs include, security, metrics, security metrics, security bugs

On virtualisation

2007-05-29 16:20:00 by Niels Provos in Google Online Security Blog

...Reduce the attack surface By disabling emulated devices, features and services you don't need you reduce the amount of code exposed to an attacker, thus reducing the number of possible bugs that can be exploited. You should also aim to protect the integrity of the guest operating system, making it harder for an attacker to get lower level...

Tags: machine, virtual machine process, virtual machine software, host machine, host, software, virtual machine, low, low level access

Fuzz Testing at Microsoft and the Triage Process

2007-09-20 18:52:00 by sdl in The Security Development Lifecycle

...reduce the chance of having to look at duplicates during the triaging process. This was accomplished by creating unique bucket ids calculated from the stack trace using both symbols and offset when the information is available. The bucket id was used to name a folder that was created in the file system to refer to a unique application...

Tags: chance exceptions, exceptions, exception handler, exception, divide-by-zero exception, exception code, triage process, process, first-chance exceptions

Supporting your family, friends, and neighbors

2008-02-13 17:45:40 by Steve Riley in Steve Riley on Security

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo