Latest Blog Posts
Identity & Access Management: Give Me a REST
June 19, 2013 Added by:Simon Moffatt
RESTful architectures have been the general buzz of websites for the last few years. The simplicity, scalability and statelessness of this approach to client-server communications has been adopted by many of the top social sites such as Twitter and Facebook. Why? Well, in their specific cases, developer adoption is a huge priority.
Comments (0)
Over-Sharing Riskier than Government Snooping
June 18, 2013 Added by:Anthony M. Freed
While the widespread rage over the government engaging in the systematic collection and analysis of data about law abiding citizens is more than understandable, the fact is that people in this age of the Internet freely share huge amounts of personal information on a daily basis, and doing so puts them at risk.
Comments (0)
20 Critical Security Controls: Control 13 – Boundary Defense
June 18, 2013 Added by:Tripwire Inc
This post is all about Control 13 of the CSIS 20 Critical Security Controls – Boundary Defense. Here we explore the (29) requirements I’ve parsed out of the control.
Comments (0)
Redefining Social Networking
June 18, 2013 Added by:James Fabricant
When it comes to adoption, the initial resistance in the enterprise seems to be that social networking isn’t typically associated with working.
Comments (0)
Creating Your Own Privacy & ROI
June 17, 2013 Added by:Krypt3ia
You can in fact obscure a lot of what you do online and through telco but you have to be diligent. It means time and sometimes money (burn phones or laptops in some cases) to obfuscate as much as you can.
Comments (0)
Security Intelligence for the Enterprise - Part 1
June 17, 2013 Added by:Rafal Los
Security Intelligence. This topic seems to come up over and over in discussions with enterprise security leaders, security professionals, writers, and pundits. There are many different facets to the topic, but ultimately what are we talking about?
Comments (0)
Why are Cybercrimes NOT Always White-collar Crimes?
June 17, 2013 Added by:DHANANJAY ROKDE
A generic definition of a crime would be an act that is in violation of the applicable laws.
Comments (0)
From the SMB to Security Guru: Five Ways IT Pros Can Manage Security on a Budget
June 14, 2013 Added by:Vinod Mohan
Given the expanding threat landscape for the SMB and the increased demand for affordable IT security tools, here are five valuable tips for IT pros that help shed light on managing enterprise security on a budget.
Comments (0)
Balancing Act Between Privacy and Security
June 13, 2013 Added by:Jarno Limnéll
Privacy and Security: Both are mandatory – and necessary. Privacy is inherent in our contemporary understanding of democracy, whereas security requires intelligence. The challenge lies in being able to find the right balance while avoiding excesses.
Comments (0)
The NSA’s Word Games Explained: How the Government Deceived Congress in the Debate over Surveillance Powers
June 12, 2013 Added by:Electronic Frontier Foundation
Concerned about the surveillance of millions of ordinary Americans, last year Senator Ron Wyden asked Director of National Intelligence James Clapper, Jr. a simple question: "Does the NSA collect any type of data at all on millions or hundreds of millions of Americans?"
Comments (0)
NSA Surveillance Is Legal And Not Targeting Average Americans, Says Texas A&M Professor
June 12, 2013 Added by:InfosecIsland News
Supposed "bombshell revelations" about NSA surveillance programs are, at this point, much ado about nothing, says a professor at Texas A&M University who contends that the government's monitoring of phone and Internet communications has been going on for years, is completely legal and is not targeting the average U.S. citizen.
Comments (1)
Enterprise Software Security - The Fake Choice Between Fast and Secure
June 12, 2013 Added by:Rafal Los
If adding security to your enterprise software development methodology and lifecycle creates a significant amount of drag on the actual release deadlines —for an extended period of time — you’re doing it wrong.
Comments (0)
BSidesLV Preview: Vulnerabilities in Application Whitelisting
June 12, 2013 Added by:Anthony M. Freed
Security BSides Las Vegas will be held on July 31st & August 1st, and so we continue our series highlighting some of the many interesting sessions that are scheduled for the conference.
Comments (0)
Scangate Re-visited: Vulnerability Scanners Uncovered
June 12, 2013 Added by:Ian Tibble
The notion that VA tools really can be used to give a decent picture of vulnerability is still heavily embedded, and that notion in itself presents a serious vulnerability for businesses.
Comments (0)
PHP and Application Security
June 10, 2013 Added by:Lee Mangold
The low barrier-of-entry for PHP allows inexperienced developers act like engineers and publish insecure code. These developers may be developing useful stuff, but they simply don't understand security.
Comments (0)
Hammer Time
June 10, 2013 Added by:Chris Blask
The Situational Awareness Reference Architecture (SARA) is what the ICS ISAC was created to foster, and to itself be a part of. Until this year, when evolutions in many areas have come together to provide the necessary foundations there has not been any value in trying to drive to a final specific definition of SARA. Today however, evidence that the stage is set for the final act is everywhere.