SEARCH RESULTS
 
Showing 1-10 of 82 records
 
Expand article

Is IF-MAP the spark that will ignite theTCG/TNC and the security industry?

The Article has images
2008-04-30 09:25:12 by HASH0x8b48bbc in StillSecure, After All These Years
...Steve Hanna and Mike Fratto. If it does indeed become widely adopted this can have a profound impact on our industry. Also, Steve and the TNC is very much looking to diversify and distribute the administration of the MAP among many vendors so that it does not become a single vendor steered standard. I applaud Steve and the rest of the group...
 
Tags: if-map, if-map specification, map, if-map represents, represents, security industry, industry, data, meta-data access
 
 
 
 
Expand article

Speaking of Security Podcast #55

2007-03-26 00:00:00 by Podcast Producers in Speaking of Security, the RSA Blog and Podcast
 
...Steve Dolnack is a Security Practice Manager for MTM Technologies , a leading provider of innovative IT solutions and services based in Stamford, CT. Steve speaks with Paul Joyal about using SIEM (Security Information Event Managerment) to aggregate massive amounts of network and security data while improving visibility into networks for...
 
Tags: security practice manager, steve dolnack, security data, steve speaks, mtm technologies, services based, massive amounts, security forensics, paul joyal
 
 
 
 
Expand article

Shimel - the NAC prophet?

2008-02-29 07:13:27 by HASH0x8b6a3a0 in StillSecure, After All These Years
 
...Steve Hanna (can you have an article on NAC standards without Steve?) and for the first time that I have seen in print, Mauricio Sanches from HP ProCurve. I have met Mauricio at some TCG events and such and think he is a pretty sharp guy about security in general and NAC in particular. Frankly though, the article was about what you would...
 
Tags: nac, nac prophet, nac band wagon, nac standards, nap support, nap, nap functionality fare, microsoft server, server
 
 
 
 
Expand article

Software Security Metrics and Commentary - Part 2

2007-10-23 20:31:00 by Security Retentive in Security Retentive
 
...Steve Bellovin did last year about this topic at the first Metricon - " On the Brittleness of Software and the Infeasibility of Security Metrics." He published a paper and a presentation about it Steve makes what I believe are two major points in this paper Software is brittle, it fails catastrophically Unlike other engineering disciplines,...
 
Tags: security metrics, software security metrics, metrics, software, metrics framework, metric, upstream sdl metrics, concrete metric, paper steve bellovin
 
 
 
 
Expand article

That didn't take long

2008-05-06 06:33:57 by HASH0x8472458 in StillSecure, After All These Years
 
...Steve Ballmer's letter to Jerry Yang. Well, it didn't take very long for a class action law suit being filed , led by two pension funds. Attorneys for the pension funds said, "The actions taken by Yahoo's CEO this past weekend confirm that the company's board of directors pursued all manner of value-destructive third-party deals to fight off...
 
Tags: yahoo deal, yahoo, yahoo shareholder, deal, jerry yang, steve ballmer, yang, pension funds, weekend
 
 
 
 
Expand article

What Are You Managing Towards? (And On Disproving Risk Management)

The Article has images
2008-06-03 14:41:11 by Alex in RiskAnalys.is
...Steve McCalmont for including FAIR in his excellent article in the May 2008 ISSA Journal, Streamlining the Risk Management Process. Three quick things to anyone who has read it and is visiting our blog for the first time We dont believe that the goal of Quantitative Risk Analysis is to be precise. We believe the goal is to be accurate. Subtle...
 
Tags: management, risk management, term risk management, management focuses, management approach, risk management process, patch management, cost management, upper management
 
 
 
 
Expand article

Online theft and fraud involves OSU Bookstore customers

The Article has images
2008-06-05 09:42:32 by Evan Francen in The Breach Blog
...Steve Eckrich says servers were shut down when the security breach was discovered Evan] 2+ months after the bookstore was originally notified that something was wrong. At the time of this post, the site is still down They tried different attacks and our Web site evidently had one vulnerability in it," said General Manager Steve Eckrich...
 
Tags: bookstore, osu bookstore, breach description, breach, online, security breach, customers, information, personal information
 
 
 
 
Expand article

The Inevitable iPhone 3G Post

2008-06-11 12:37:46 by Glennf in Wi-Fi Networking News
 
...Steve Jobs introduced the iPhone 3G. Later that day, in a briefing, I was able to handle and use the phone briefly. It's lovely. But its inclusion of 3G service coupled with Wi-Fi, as well as a real GPS chip coupled with assistive cell-tower triangulation and Wi-Fi network location approximation means that you have a device that might fairly...
 
Tags: iphone, wi-fi hotspot, wi-fi, device, mobile device, wi-fi requires, non-compromise device, computer, full-blown computer
 
 
 
 
Expand article

University of Florida student information online for years

The Article has images
2008-06-12 10:41:30 by Evan Francen in The Breach Blog
...Steve Orlando, UF Spokesman Evan] I wonder how Mr. Orlando came to the conclusion that the risk of disclosure and misuse is "very low". As I understand, the server was publicly accessible, presumably via the internet. If so, was the site indexed by search engines like Google, Yahoo, and Microsoft? It is much easier to find information through...
 
Tags: information, information online, personal information, information security, confidential information, information security personnel, student information, security measures, install security measures
 
 
 
 
Expand article

Ironkey at the Kentuckiana ISSA meeting on June 27th 2008

2008-06-24 00:33:58 by Editor in Irongeek's Security Site