SecurityRatty: tag: security

Your Companies Biggest Security Hole - What is the BGP-style Vuln Lurking in Software Security?

2008-09-05 08:31:58 by Gunnar Peterson in 1 Raindrop

...Security Hole" has been that interior relays have always been trusted even though they are not trustworthy That could apply word for word to how MQ Series and other enterprise messaging systems are deployed. Let's say you are a bank and have been happily running your business on a mainframe for decades. Life is good, come in at 9 leave at 5,...

Tags: security, security hole, security protocols, business, business runs, business transaction backbone, improve security, message security, enforces authorization policy

Data security now 10% of IT operating budgets, Forrester says

2008-09-04 00:00:00 by Jon Brodkin in Network World on Security

Abstract: IT security budgets are on the rise, reflecting growing concern over data breaches and increasing CEO involvement in the task of protecting sensitive data

Tags: ceo involvement, security budgets, sensitive data, data breaches, task, abstract, concern

Misconceptions about outsourcing security

2007-12-13 14:05:54 by Khalid Kark in Security & Risk Management

...security. Here are the most common ones that I come across Outsourcing security is cheaper than doing it internally. Cost is usually the one of the reasons business gets interested to outsource but Forrester has consistently found that for security managers cost is not the primary reason they want to outsource. and outsourcing may not always...

Tags: security processes, establish security processes, security, processes, security controls, security managers cost, cost, security operations, security services

"Where Should Airport Security Begin?"

2007-12-20 12:28:12 by Editor in Schneier on Security

In this essay, Clark Ervin argues that airport security should begin at the front door to the airport: Like many people, I spend a lot of time in airport terminals, and I often think that they must be an awfully

Tags: airport, airport security, airport terminals, clark ervin argues, front door, lot, time, essay, people

Introducing Google's online security efforts

2007-05-21 09:43:00 by A Googler in Google Online Security Blog

...security is an important topic for Google, our users, and anyone who uses the Internet. The related issues are complex and dynamic and we've been looking for a way to foster discussion on the topic and keep users informed. Thus, we've started this blog where we hope to periodically provide updates on recent trends, interesting findings, and...

Tags: activity, malware activity, web servers, servers, malware, anti- malware effort, malware distribution servers, sites, web sites

Automating web application security testing

2007-07-16 11:40:00 by Panayiotis Mavrommatis in Google Online Security Blog

...Security Team Cross-site scripting (aka XSS) is the term used to describe a class of security vulnerabilities in web applications. An attacker can inject malicious scripts to perform unauthorized actions in the context of the victim's web session. Any web application that serves documents that include data from untrusted sources could be...

Tags: web application, application, input, input parameters, accepts user input, xss, xss vulnerabilities, security, security team check

An Analysis of Security Mechanisms in the OSI Model

2007-12-06 00:00:00 by Editor in Infosec Writers Latest Security Papers

Karlo Rodriguez submits this paper on security and the OSI model

Tags: osi model, karlo rodriguez submits, security, paper

Information Security Policy and Responsibility

2007-12-27 08:56:05 by Editor in Information Security Policy Whitepapers

In this paper we discuss important information security policy lessons from recent high-profile data breaches and the resulting public response of the effected organizations

Tags: public response, discuss, organizations, paper

Security Policy Considerations for the Junk FAX Prevention Act

2007-12-27 08:56:05 by Editor in Information Security Policy Whitepapers

New FCC rules for the Junk Fax Prevention Act of 2005 have changed the way organizations must handle outbound customer communications via FAX technology. In this article we look at the main provisions of the recent ruling and suggest some audits of your information security policies that may help reduce the risk of violating the new FAX...

Tags: information security policies, fax requirements, fcc rules, main provisions, fax technology, audits, organizations, article, recent

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo