|
All content with label grp-sb.
Related Labels:
security, grp-ape, password manager, grp-ce, cpm, load balancer, grp-cto, rsa, citrix password manager, compliance, privacy, privileged accounts, snooping, cyber-ark, passwords, f5, cag, smart card, gemalto, nihaorr1, gfe, personal, laptop, federal, dlp, pci, pci dss, strong authentication, virtualized computing, virtualized security, malware, autonomous security, autonomous computing, personal security questions, xenapp, netscaler, virtualization, presentation server, firewall, appexpert, load balancing
more »
Prevalence of Snooping in IT
(Kate Brew)
I read several articles about research on the behavior of IT professionals recently. The research was sponsored by security vendor CyberArk. Amazing stuff\! A third of all IT professionals surveyed could still access the company's network after ...
Other labels:
security, passwords, password manager, cyber-ark, snooping, privileged accounts
|
DDOS protection from the " good " guys
(Chris Fleck)
case you missed it there is a really interesting story circulating on the Net, best told by Jim Louderback the CEO of Revision3 and victim of a DDOS attack over Memorial day weekend ( his Blog http://revision3.com/blog/2008/05/29/insidetheattackthatcrippledrevision3 & CNET interview http://news.cnet.com ...
Other labels:
load balancing, load balancer, security, f5, grp-ape, grp-cto, grp-ce
|
Gemalto - case for strong authentication with Citrix
(Kate Brew)
I spent some time recently chatting with Ross Duncan, VP of Channels at Gemalto, due to my role as product manager for Citrix Password Manager.While Citrix remains "strong authentication agnostic", Ross raised some great points: \ Passwords ...
Other labels:
strong authentication, gemalto, smart card, password manager, cpm, citrix password manager, xenapp, cag
|
Understanding The Impact Of The Debian SSL Vulnerability
(Chris Mayers)
Recent reports of the Debian SSL vulnerability (see USCERT http://www.uscert.gov/current/ and El Reg http://www.theregister.co.uk/2008/05/21/massivedebianopensslhangover/) give thorough and careful explanations of the issue. It's worth emphasising a few points:   ...
|
Web Application Security and Human Variabilty
(Chris Fleck)
Many news reports have recently identified the increased threat to w eb s ites and applications from SQL injections, the most recent example being the Nihaorr1 script that resulted in over 600,000 sites being infected even including the {}{}Department ...
Other labels:
grp-ape, grp-cto, grp-ce, nihaorr1, netscaler, firewall, security, load balancer ...
|
Making a Federal Case for Laptop Security
(Kurt Roemer)
Should government employees be allowed to use personal systems? Many government CIOs/CISOs are reluctant and prohibit employees from using nongovernment furnished equipment. This is problematic for many reasons including: Organizations have an increasingly mobile workforce ...
Other labels:
federal, laptop, security, personal, gfe
|
Reflections on the 2008 RSA Security Conference
(Kurt Roemer)
Looking back at the 2008 US RSA Security Conference, there was a tremendous amount of interaction, but not a readily apparent amount of innovation. I spent the bulk of my time in meetings with customers, partners, press, and analysts. All seemed to echo the same sentiment there's not any ...
Other labels:
security, rsa, dlp, virtualization
|
Santa Claus, Unicorns, and PCI Compliant Products
(Kurt Roemer)
Everybody has heard the stories and wants to believe but there's no such thing as "PCI Compliant" products. People are constantly asking the question: Is "Product X" PCI compliant? The short answer is: No. The long answer requires some careful explanation. PCI sets forth 12 ...
Other labels:
grp-ape, security, compliance, pci dss, pci
|
Autonomic Security in a Virtualized Environment
(Kate Brew)
Autonomic security, AKA, selfhealing, selfdefending, situation aware security, or feedbackbased security management, has long been a dream in distributed IT computing. It could be the reason that this dream was not realized is that it is too hard to do in distributed computing. Enter ...
Other labels:
security, autonomous computing, autonomous security, malware, virtualized security, virtualized computing
|
My favorite color is "three"
(Kate Brew)
Most people don't realize the value of the answers to their personal security questions (Citrix Password Manager calls this Question Based Authentication.) As it turns out, those answers are more valuable than passwords. If someone learns enough answers ...
Other labels:
security, personal security questions, password manager, cpm, privacy
|
|
|