SEARCH RESULTS
 
Showing 1-10 of 21 records
 
Expand article

Virtualization and security - are we missing the wood for the trees?

2008-03-31 12:05:40 by Paul Stamp in Security & Risk Management
 
...subtle threats to the hypervisor layer, and whether its possible to jump from one virtual machine to another. Then there are the circular discussions about whether its provably more secure to perform AV and intrusion inspection from inside the virtual machine, or have the host perform all the functions All pretty tedious if you ask me. I...
 
Tags: security, virtualization, security business model, options virtualization introduces, subtle virtualization threats, business, security services, virtual machine, virtualization center
 
 
 
 
Expand article

The New Threat Modeling Process

The Article has images
2007-10-02 01:15:35 by sdl in The Security Development Lifecycle
...subtle art d. Accept risk, when allowed by the SDL 5. Validate There are two levels of validation. The first is within each stage, the second is a validation pass at the end of the process. That end of process validation entails a. Make sure that the diagrams are up-to-date and accurate b. Ensure that you have STRIDE threats per data flow...
 
Tags: process, threat, process validation entails, threat model, software process diagram, people, people trust boundaries, love threat, hamster wheel
 
 
 
 
Expand article

Securing Network Location Awareness with Authenticated DHCP

2008-03-19 12:47:02 by Steven J. Murdoch in Light Blue Touchpaper
 
...subtle naming and key management tricks. These techniques, and how to implement the protocols in a privacy-preserving manner are described in our paper
 
Tags: network location, location, network location awareness, network, office location, dhcp, network location identifier, logical network, vista dhcp client
 
 
 
 
Expand article

iPass Launches Individual US, Global Plan for Hotspots, US Plan for 3G

2008-03-31 05:00:00 by Glennf in Wi-Fi Networking News
 
...subtle dig at Boingo, which often lists their total of signed locations, which expands in count before all new locations are integrated into the footprint. iPass uniquely includes current Starbucks locations run by T-Mobile; Boingo and other aggregators will start to include Starbucks as AT&T takes over the network The four plans iPass will...
 
Tags: global wi-fi, wi-fi, wi-fi operator, plain wi-fi, global wi-fi plan, ipass, cell service, service, wi-fi locations
 
 
 
 
Expand article

7 Seminal Security Books Every Security Wannabe Should Read

The Article has images
2008-03-17 17:49:28 by Craig Balding in Security Wannabe
...subtle/obscure/funny. And he can write! For a non-native English speaker he writes with great charm and wit. Reading this book is like stepping into the Matrix - everything we take for granted can be unwoven, refactored and turned inside out . Buy this book and read it cover to cover then go check out his lair , where he shares his ongoing...
 
Tags: books, security books, software, software security assessment, security, thick books, security wannabe, software vulnerability research, software security
 
 
 
 
Expand article

If You See Someone Using Wi-Fi to View Illegal Images, Call the Police

2008-04-19 09:36:56 by Glennf in Wi-Fi Networking News
 
...subtle child porn, from the reports issued by the police The broader issue of whether one should ever look at images of consenting, legal age participants in naked gymnastics in public places is also pretty clear (no
 
Tags: call, cafe manager shoos, manager, police, manager call police, images, cafe, view child pornography, subtle child porn
 
 
 
 
Expand article

The RSA Conference

2008-04-22 06:35:59 by schneier in Schneier on Security
 
...subtle, and users are starting to treat it like infrastructure For a while now I have predicted the death of the security industry . Not the death of information security as a vital requirement, of course, but the death of the end-user security industry that gathers at the RSA Conference. When something becomes infrastructure -- power, water,...
 
Tags: non-security companies, companies, end-user security industry, security industry, information security conference, information security, automobile companies, security companies, security
 
 
 
 
Expand article

The RSA Conference

2008-04-22 06:35:59 by schneier in Schneier on Security
 
...subtle, and users are starting to treat it like infrastructure For a while now I have predicted the death of the security industry . Not the death of information security as a vital requirement, of course, but the death of the end-user security industry that gathers at the RSA Conference. When something becomes infrastructure -- power, water,...
 
Tags: non-security companies, companies, end-user security industry, security industry, information security conference, information security, automobile companies, security companies, security
 
 
 
 
Expand article

iPhone Gains 15 Minutes Free Wi-Fi in 28 Airports

2008-05-02 12:04:16 by Glennf in Wi-Fi Networking News
 
...subtle; you have to watch the ad to gain access. But it seems like a reasonable exchange, with two hours' access up to a full day running $4 to $12 in the U.S. at paid locations. (Of course, I subscribe to Boingo Wireless's roaming service now, so I can bypass the ads in favor of paying $22 per month for unlimited usage, too. That's part of...
 
Tags: hotspot, hotspot ads involve, ads, boingo offers ads-for-access, boingo, free wi-fi, wi-fi, access, gain access
 
 
 
 
Expand article

Communicating about risk - part 2

The Article has images
2008-05-20 16:22:24 by JonesJ in RiskAnalys.is
...subtle but important limitations with the term likelihood Likelihood connotes the probability of an event occurring. In fact, you may see explicit probability ranges assigned to each qualitative label (e.g., Very High = 90