SecurityRatty: tag: security

Misconceptions about outsourcing security

2007-12-13 14:05:54 by Khalid Kark in Security & Risk Management

...security. Here are the most common ones that I come across Outsourcing security is cheaper than doing it internally. Cost is usually the one of the reasons business gets interested to outsource but Forrester has consistently found that for security managers cost is not the primary reason they want to outsource. and outsourcing may not always...

Tags: security processes, establish security processes, security, processes, security controls, security managers cost, cost, security operations, security services

"Where Should Airport Security Begin?"

2007-12-20 12:28:12 by Editor in Schneier on Security

In this essay, Clark Ervin argues that airport security should begin at the front door to the airport: Like many people, I spend a lot of time in airport terminals, and I often think that they must be an awfully

Tags: airport, airport security, airport terminals, clark ervin argues, front door, lot, time, essay, people

Introducing Google's online security efforts

2007-05-21 09:43:00 by A Googler in Google Online Security Blog

...security is an important topic for Google, our users, and anyone who uses the Internet. The related issues are complex and dynamic and we've been looking for a way to foster discussion on the topic and keep users informed. Thus, we've started this blog where we hope to periodically provide updates on recent trends, interesting findings, and...

Tags: activity, malware activity, web servers, servers, malware, anti- malware effort, malware distribution servers, sites, web sites

Automating web application security testing

2007-07-16 11:40:00 by Panayiotis Mavrommatis in Google Online Security Blog

...Security Team Cross-site scripting (aka XSS) is the term used to describe a class of security vulnerabilities in web applications. An attacker can inject malicious scripts to perform unauthorized actions in the context of the victim's web session. Any web application that serves documents that include data from untrusted sources could be...

Tags: web application, application, input, input parameters, accepts user input, xss, xss vulnerabilities, security, security team check

An Analysis of Security Mechanisms in the OSI Model

2007-12-06 00:00:00 by Editor in Infosec Writers Latest Security Papers

Karlo Rodriguez submits this paper on security and the OSI model

Tags: osi model, karlo rodriguez submits, security, paper

Information Security Policy and Responsibility

2007-12-27 08:56:05 by Editor in Information Security Policy Whitepapers

In this paper we discuss important information security policy lessons from recent high-profile data breaches and the resulting public response of the effected organizations

Tags: public response, discuss, organizations, paper

Security Policy Considerations for the Junk FAX Prevention Act

2007-12-27 08:56:05 by Editor in Information Security Policy Whitepapers

New FCC rules for the Junk Fax Prevention Act of 2005 have changed the way organizations must handle outbound customer communications via FAX technology. In this article we look at the main provisions of the recent ruling and suggest some audits of your information security policies that may help reduce the risk of violating the new FAX...

Tags: information security policies, fax requirements, fcc rules, main provisions, fax technology, audits, organizations, article, recent

ISO 17799:2005 - Security Policy Implications For Business

2007-12-27 08:56:05 by Editor in Information Security Policy Whitepapers

This whitepaper discusses the importance of information security policies within an information security management system, including the benefits of using Information Shield publications in obtaining certification against the new standard

Tags: information security policies, information shield publications, whitepaper discusses, standard, benefits, importance, certification

Windows Vista Security Testing

2007-02-19 18:01:21 by Editor in Endpoint Security: Translating Policy Into Reality

For anyone who's on the bleeding edge of Microsoft Technology, here's a few resources that I've collected while playing with Vista's new Specialized Security-Limited Functionality (SSLF) feature set

Tags: vista, microsoft technology, feature set, resources, sslf, functionality, edge

Federal Information Security and Management Act -- Five Years On

2007-12-18 02:00:00 by Shannon Kellogg in Speaking of Security, the RSA Blog and Podcast

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo