SEARCH RESULTS
 
Showing 1-10 of 18 records
 
Expand article

Fuzz Testing at Microsoft and the Triage Process

2007-09-20 18:52:00 by sdl in The Security Development Lifecycle
 
...scalable testing approaches to detecting program failures that may have security implications As Michael Howard has pointed out before , we do our best to ensure that the SDL incorporates lessons learned from vulnerabilities that required us to release security updates. It turns out that the animated cursor bug patched in MS07-017 had a...
 
Tags: chance exceptions, exceptions, exception handler, exception, divide-by-zero exception, exception code, triage process, process, first-chance exceptions
 
 
 
 
Expand article

OMG, This is Funny: BullshIT Awards :-)

2008-01-15 23:31:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...scalable, extensive security framework that protects the data today and tomorrow as the infrastructure changes." (#3) and of course his old fave "Theyre not related. Theres no relationship to our funding and our research and development cycle." (#1 About me: http://www.chuvakin.org
 
Tags: nick selby delivers, extensive security framework, development cycle, bullsit awards, tech-flack quotes, origination space, relationship, research, protects
 
 
 
 
Expand article

The Austin Project

2008-01-21 22:45:39 by RSnake in ha.ckers.org web application security lab
 
...scalable, and while the blog has been a great conduit for sharing some of my ideas, its clear to me that people just arent getting the value out of it that they could in another format (I guess you get what you pay for, as this site is free!). It turns out I just have a lot more to say than I put on this site. That became apparent today when...
 
Tags: people, competent people, project, helps people focus, austin project, austin project web-page, security, web application security, site
 
 
 
 
Expand article

Logging Poll #5 "Top Logging Challenges" Analysis

The Article has images
2008-02-08 11:06:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
...scalable log management solution ( example Sixth , as I lamented, few care about log security ( this counts as laments , I guess). Secure storage of logs is only bothering a few people. One word: yet! ;-) As of today, stored log hashing + (sometimes!) log transport encryption + (rarely!) encrypted archives are the state of the art Next poll...
 
Tags: enable log collection, log, log management, log analysis tools, collect logs, logs, log security, poll, log volume
 
 
 
 
Expand article

With Windows Server 2008 there's no more NAPping

2008-02-21 00:00:00 by Tim Greene in Network World on Security
 
By the end of the month, Microsoft will release Windows Server 2008 which contains native support for its NAC scheme called network access protection (NAP Closing the Gap Between Patient and Caregiver Advertisement Optical network solutions from AT&T provide scalable, secure bandwidth to keep the health care provider and the patient...
 
Tags: health care provider, att provide scalable, network access protection, optical network solutions, release windows server, network traffic, nac scheme, patient, secure bandwidth
 
 
 
 
Expand article

On "Network, Database, and System Log Data Management: The What, Why, and How"

2008-04-03 13:19:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
I wrote this fairly basic paper on logs, check it out: " Network, Database, and System Log Data Management: The What, Why, and How This article discusses the importance of implementing a uniform and scalable log management platform for network and storage systems across your organization to address security, compliance and operational issues...
 
Tags: network, fairly basic paper, address security, storage systems, database, operational issues, article discusses, compliance, org
 
 
 
 
Expand article

Spam Filtering: Understanding SEP and CEP

2008-04-14 04:56:52 by Greg Reemler in The Complex Event Processing Blog
 
...scalable nor efficient.If you followed a rules-based approach (only),againstheavy, complex spam (the type of spam we see in cyberspace today), you would spend much of your time writing rules and still not stop very much of the spam The same is true for the security situation-detection example in Marcs example Like Googles Gmail spam filter,...
 
Tags: spam, complex spam, google detects spam, spam filter, cep, detect, detect complex situations, google, approaches
 
 
 
 
Expand article

Is Interop about inter-operational anymore?

2008-05-01 05:43:31 by HASH0x8b7888c in StillSecure, After All These Years
 
...scalable way to perform NAC enforcement, but really don't fit. Most of the other NAC vendors frankly don't even give much lip service to interoperability. The same is true for many of the networking vendors as well. What is the shiny new box from Foundry or HP ProCurve. Who has a bigger booth, whose booth is smaller than last year? How many...
 
Tags: vendors, switch vendors, vendors care, nac vendors frankly, frankly, nac vendors, interop, anymore, network world folks
 
 
 
 
Expand article

Virtualized iSCSI SANs: Flexible, Scalable, Enterprise Storage for Virtual Infrastructures

2008-05-05 13:00:00 by Editor in Computerworld Security News
 
Source: Dell & VMWare) Enterprises of all sizes are building flexible storage infrastructures using iSCSI and advanced virtualization technologies. This joint VMware and EqualLogic white paper describes a virtualized infrastructure that applies storage and server virtualization technologies to cost-effectively achieve a flexible,...
 
Tags: flexible, virtualization technologies, server virtualization technologies, flexible storage infrastructures, vmware, joint vmware, applies storage, iscsi, infrastructure