SEARCH RESULTS
 
Showing 1-10 of 146 records
 
Expand article

TippingPoint goes 10GBPS, but do people want just IPS or UTM?

2008-03-03 21:18:06 by HASH0x8b486f4 in StillSecure, After All These Years
 
...sounds like it is, is a network controller that load balances traffic among several conventional Tipping Point boxes and than puts the flow back together and passes it on. Sounds cool, but I would like to see the latency involved in doing this. Sounds like a lot of moving parts. It also sounds a lot like the way Hoff used to do things over at...
 
Tags: ips, line ips, line speed ips, mike, utm, mike rothman, sounds, sounds cool, core controller appliance
 
 
 
 
Expand article

The Conscious Competence Security Model

2007-10-05 12:44:00 by Allen Baranov, CISSP in Security Thoughts
 
...sounds very depressing and sounds like we should just throw in the towel but I think it is more positive then that The Conscious Competence Learning Model has many different names and versions but the concept is as follows At first you are blissfully unaware of how much you don't know Then you start learning and get overwhelmed once you...
 
Tags: information security field, information, information security spin, information security, security, security incident, computer security, conscious competence, model
 
 
 
 
Expand article

Mike Rothman - The 419

The Article has images
2008-02-08 06:31:00 by Mike Rothman in Security Mike's Blog
...sounds funky. If he outperformed the expectation, I'm sure he'd be due a nice bonus from SIT. Not an illicit $35 million dollar payout that he needs to get out of the country Other inconsistencies - You can't see the domain (I removed it), but it's a public email service in Australia. Yet the phone number he provided (I removed that also)...
 
Tags: capital investment funds, capital investment, funds, capital, magellan capital funds, direct capital funds, investment, stockmarket investment, scottish investment staff
 
 
 
 
Expand article

Confidential information sent to PinPay.net and SoftCard.biz is exposed

The Article has images
2008-05-08 13:26:03 by Evan Francen in The Breach Blog
...Sounds impressive, but it also sounds like the company should know a thing or two about securing web site transactions with encryption I want to discuss the risk of sending confidential private information over a public network such as the internet without encryption, in particular. This is not a new topic, but I will take some time to...
 
Tags: information, drivers license card, license card, card, free card, social security card, sensitive information, sensitive personal information, encrypt sensitive information
 
 
 
 
Expand article

Eavesdropping on Encrypted Compressed Voice

2008-06-19 06:27:13 by schneier in Schneier on Security
 
...sounds That happens because the sampling rate is kept high for long complex sounds like "ow", but cut down for simple consonants like "c". This variable method saves on bandwidth, while maintaining sound quality VoIP streams are encrypted to prevent eavesdropping. However, a team from John Hopkins University in Baltimore, Maryland, US, has...
 
Tags: variable, variable method saves, compression technique, technique, john hopkins university, decode entire conversations, complex sounds, sounds, packets
 
 
 
 
Expand article

BlackHat Picks, Day 1

2008-07-28 20:35:32 by Chris Eng in Zero in a bit
 
...Sounds like an interesting approach 15:15-16:30 Option 1: Hovav Shacham , Return-Oriented Programming: Exploits Without Code Injection. The topic sounds pretty straightforward conceptually but it will be interesting to see the implementation. Option 2: Tom Stracener and Robert Hansen , Xploiting Google Gadgets: Gmalware and Beyond. Not...
 
Tags: option, virtualization security apocalypse, virtualization security, day, picks, dns goodness, hovav shacham, chris hoff, code injection
 
 
 
 
Expand article

BlackHat Picks, Day 1

2008-07-28 20:35:32 by Chris Eng in Zero in a bit
 
...Sounds like an interesting approach 15:15-16:30 Option 1: Hovav Shacham , Return-Oriented Programming: Exploits Without Code Injection. The topic sounds pretty straightforward conceptually but it will be interesting to see the implementation. Option 2: Tom Stracener and Robert Hansen , Xploiting Google Gadgets: Gmalware and Beyond. Not...
 
Tags: option, virtualization security apocalypse, virtualization security, day, picks, dns goodness, hovav shacham, chris hoff, code injection
 
 
 
 
Expand article

A Cryptographer and a Data Communications Guy Talk About Risk Management

2008-10-16 15:32:16 by Alex in RiskAnalys.is
 
Sounds like the beginning of a joke, right? So these two guys walk into a bar The Bruce Schneier and Marcus Ranum have an article up on TechTarget/Information Security Magazine called, creatively enough, Bruce Schenier, Marcus Ranum debate risk management Unfortunately, to get to the article, youll have to either already be a subscriber to IT...
 
Tags: risk management, management, risk, engineer risk management, methodologies, risk assessment methodologies, risk models, risk analysts, models
 
 
 
 
Expand article

15 Minutes To Crack Your WPA+TKIP

2008-11-05 10:56:53 by Editor in Cheap Hack
 
...Sounds like he's found a way to crack it. This is, it seems, the same Erik Tews described in this Register article from May, 2007 , about his new and speedier WEP crack, entitled "Gone in 120 seconds: cracking Wi-Fi security"... Hmmm. sounds familiar
 
Tags: crack, erik tews, tews, speedier wep crack, wireless security configuration, sounds familiar, sounds, aoyama diamond hall, crypto issues
 
 
 
 
Expand article

Some Yahoo! employees exposed through mistaken email

The Article has images
2007-12-12 15:11:31 by Evan Francen in The Breach Blog
...sounds like this is a human error. Information security breaches resulting from human error are one of t