SEARCH RESULTS
 
Showing 1-10 of 322 records
 
Expand article

What do the Cold Boot Crypto Attack, DVD Players, and MiFare tell us about the Future of Biometrics?

2008-03-26 00:16:43 by Erik T. Heidt in Art of Information Security
 
Last week Slashdot pointed me to an interesting article in The Standard Understanding anonymity and the need for biometrics In fact, I found the article to be rather upsetting. Not because of the articles thesis that strong authentication through a national ID program would not necessarily pose a threat to privacy; but rather, because of their...
 
Tags: biometric authentication, biometric authentication infrastructure, biometric authentication challenge, tamper-proof biometric authentication, authentication, authentication device, mifare, tamper, biometrics
 
 
 
 
Expand article

If you can't tell a booth babe from a real girl, you got problems!

The Article has images
2008-04-10 23:10:00 by HASH0x8471d50 in StillSecure, After All These Years
OK, I know my next post was supposed to be a continuation of my Shimel's theory of security company relativity but I have to do this first. Sorry, you will have to wait for part 2 of the theory tomorrow. I did want to comment on InfoSec Events post about " Battle of the Booth Babes ". Even though I know the author of the blog, I feel compelled...
 
Tags: booth, real booth babe, stillsecure booth, male booth babes, booth babe, booth babes, company, security company relativity, security
 
 
 
 
Expand article

HP's NAC- What I've Been Wanting to Tell You (but couldn't)

2008-07-22 22:29:11 by JJ in Security Uncorked
 
Well everyone- theres something Ive been wanting to tell you and now, after a year , I can Because of non-disclosure and other confidentiality contracts with various partners, vendors and manufacturers, weve had sealed lips for almost exactly 12 months. Now that its been made public by the media, I can share a little information with you and...
 
Tags: nac, integration, tnctcg integration frameworks, nac integration, nac vendors, nac solutions-, procurve, procurve idm, nac market
 
 
 
 
Expand article

My excellent adventure at Black Hat

2008-08-07 11:52:20 by HASH0x8b31f6c in StillSecure, After All These Years
 
Yesterday was a great day at Black Hat. I would tell you all about it, but it seems Mitchell thinks that it best that we don't talk about what goes on here at Black Hat . Now, far be it from me to break "Cardinal Rules" (has anyone ever really thought about what exactly is a "cardinal rule"? Why not a Blue Jay or Falcon rule?) but if we can't...
 
Tags: black hat, security, security bloggers, security research team, virtual security, security community, security stuff, security blogger buddies, juicy vegas stuff
 
 
 
 
Expand article

Fun TLR Log Management Questions

2008-03-14 12:04:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
As I mentioned before , I received a lot of fun questions from the audience during our "Log Management Thought Leadership Roundtable Webcast" ( recording , some comments ). Since they would be useful to my readers, I am answering some of them here (questions are anonymous and slightly rewritten for clarity Q1: When you mention "forensics", are...
 
Tags: log, log ownership issues, log services, log messagessecond, log management, log management solution, management, log sources, incident response team
 
 
 
 
Expand article

America's Dilemma: Close Security Holes, or Exploit Them Ourselves

2008-05-01 04:00:00 by Bruce Schneier in Wired Security
 
On April 27, 2007, Estonia was attacked in cyberspace. Following a diplomatic incident with Russia about the relocation of a Soviet World War II memorial, the networks of many Estonian organizations, including the Estonian parliament, banks, ministries, newspapers and broadcasters, were attacked and -- in many cases -- shut down. Estonia was...
 
Tags: security, bad guys insecure, guys, non-security, security improves, technologies, dual-use technologies, security improvements, agency
 
 
 
 
Expand article

Dual-Use Technologies and the Equities Issue

2008-05-06 05:17:24 by schneier in Schneier on Security
 
On April 27, 2007, Estonia was attacked in cyberspace. Following a diplomatic incident with Russia about the relocation of a Soviet World War II memorial, the networks of many Estonian organizations, including the Estonian parliament, banks, ministries, newspapers and broadcasters, were attacked and -- in many cases -- shut down. Estonia was...
 
Tags: technologies, dual-use technologies, bad guys insecure, guys, dual, security, non-security, security improves, security improvements
 
 
 
 
Expand article

Dual-Use Technologies and the Equities Issue

2008-05-06 05:17:24 by schneier in Schneier on Security
 
On April 27, 2007, Estonia was attacked in cyberspace. Following a diplomatic incident with Russia about the relocation of a Soviet World War II memorial, the networks of many Estonian organizations, including the Estonian parliament, banks, ministries, newspapers and broadcasters, were attacked and -- in many cases -- shut down. Estonia was...
 
Tags: technologies, dual-use technologies, bad guys insecure, guys, dual, security, non-security, security improves, security improvements
 
 
 
 
Expand article

What Are You Managing Towards? (And On Disproving Risk Management)

The Article has images
2008-06-03 14:41:11 by Alex in RiskAnalys.is
First, Id like to thank Steve McCalmont for including FAIR in his excellent article in the May 2008 ISSA Journal, Streamlining the Risk Management Process. Three quick things to anyone who has read it and is visiting our blog for the first time We dont believe that the goal of Quantitative Risk Analysis is to be precise. We believe the goal is...
 
Tags: management, risk management, term risk management, management focuses, management approach, risk management process, patch management, cost management, upper management