SecurityRatty: tag: walk

"Walking" with the SDL - Part 1

2008-07-18 16:55:00 by sdl in The Security Development Lifecycle

...walk and run as a way to provide some basic starting points that would move your organization toward implementing a version of Microsofts Security Development Lifecycle (SDL In this series I am going to talk about Walking with the SDL. Walking is the point where your security development practices become a lifecycle a repeatable, mostly...

Tags: development, secure development practices, development culture, security development practices, sdl, security, security practices, perform security analysis, application security

Walking with the SDL Part 2

2008-07-21 16:56:00 by sdl in The Security Development Lifecycle

...Walking with the SDL. In Part One , I provided a snapshot of Crawling and discussed getting management approval. In Part Two, I will cover a couple more Walk components: expanding security training and formalizing requirements This blog gives us a place to talk about our experiences from using the SDL here at Microsoft and hopefully provide...

Tags: define security requirements, security requirements, requirements, security, security development lifecycle, development lifecycle, security pulse, perform security analysis, principles

"Crawling" Toward SDL

2008-03-06 22:13:00 by sdl in The Security Development Lifecycle

...walk, run?" We use this phrase to differentiate the initial activities that will get us quickly moving toward our larger goals and then supplement them with other activities that may require longer preparation or planning. As I help non-Microsoft companies implement SDL into their development lifecycles, this "crawl" phase toward full...

Tags: sdl, security, perform security analysis, application security, application, applications security, security issues, issues, non-microsoft sdl engagements

12 Signs that Your Company is Already in the Cloud

2008-04-25 19:14:19 by Craig Balding in Cloud Security

...walk into the Data Center and it feels cooler than usual When the builders next door accidentally saw through the company Internet connection, people complain there must be a DoS attack going on as they cant get to their files During physical inspections, you notice unexplained gaps in server cabinets Login failures go down, in fact login...

Tags: company, company car park, signs, cloud, company internet connection, telltale signs, credit card, credit card charges, security

A new blog on the block

2008-05-16 23:36:19 by HASH0x8af0bbc in StillSecure, After All These Years

...walk by the NOC at Interop, peak inside at the folks at the stations, smile and move on. How many actually take the tour compared to how many walk the floor or sit in on presentations. I think in Dave's view it is a case of when you are a hammer, everything looks like a nail More importantly though Dave challenges me to answer his questions...

Tags: blog, stillsecure products, products, stillsecure, 3rd party products, labs, interop labs, interop, dave

The Smith-Lemli-Opitz/RSH Foundation

2008-06-27 14:57:28 by Doug Woodall in The Spyware Biz Blog

...walk going on back east. If you can help, its always appreciated as our Nations health care is not all that stellar clipped from www.firstgiving.com 3rd Annual Mark Noah Balloon Walk for SLOS The Smith-Lemli-Opitz/RSH Foundation was created in 1988 to give a group of 37 families with SLO/RSH children a network to exchange experiences...

Tags: nations health care, exchange experiences, slos, slorsh, foundation, network, son, information, east

"Walking" with the SDL - Part 4

2008-07-25 20:49:00 by sdl in The Security Development Lifecycle

...Walking with the Security Development Lifecycle (SDL) [ Part 1 , Part 2 , Part 3 ]. So far I have discussed getting management approval, expanding security training, formalizing security requirements and effective ways to reuse your threat model or attack surface review data. In this post, I will wrap up with a look into setting up final...

Tags: team, product team, requirements, define requirements, security requirements, security, final security report, threat models, re-review threat models

When the shoe is on the other foot

2008-08-06 10:16:46 by HASH0x8472b8c in StillSecure, After All These Years

...walk in holding his sandals was pretty funny. But it worked. We got away from the Fortify party as it was way too crowded. We found ourselves in my favorite part of Pure, the Pussycat Doll Lounge. Five minutes later out came the Pussycats. They put on a very hot show that had us all dancing and shouting After that we went to my usual late...

Tags: time, uncivil time, black hat, mitchell, east coast time, mitchell walk, mitchell ashley, pure, club pure

Five stolen Florida Department of Children and Families laptops

2008-01-04 10:12:20 by Evan Francen in The Breach Blog

...walk out during business hours with five laptops the Florida Department of Children and Families is just now notifying about 1,200 day-care providers that their employees, as well as center operations, may be at risk The computers contained applications for child-care-center licenses. Centers are required to provide personal information on...

Tags: agency, law enforcement agency, law, confidential information, information, confidential personal information, law enforcement led, laptops, sensitive personal information

DRM Scorecard Makes Me Wonder: The Media Industry and the TSA, Sadistic or Incompetent?

2007-08-02 08:19:00 by Eric Marvets in The Security Samurai

...walk around barefoot in public. We tell them were screening for bombs and they just go with it. The terrorist can still strap whatever they need to their leg, just not their shoes We installed rootkits on peoples PC without their knowledge We banned water and baby food We sue the people who love our products the most We detain babies Wedamn...

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo