BlogsSecurity Spotlight
Security spotlight
Email SecurityRecent Posts
Why 2012 is the year of Public Key Infrastructure
Comodo, Sony, RSA Security and why it isn't over for PKI
The IT security world has been shaken by a series of breaches that some say spells the death of Public Key Infrastructure (PKI) technology. Comodo, Sony, RSA Security and other breaches have seen established and trusted organisations fall from grace...
May 12, 2012 3:29 PM Read Full Post
Alan Turing notes on cryptography released
Are there any insights left to be wrung from the code breaker's papers?
Chris Vallance of the BBC reports that GCHQ has released some of Alan Turing’s papers on the theory of code breaking. They’re not on display at the National Archives at Kew. I’ve checked the web pages of the Archives and...
April 23, 2012 12:14 PM Read Full Post
BYOD - It's time to throw out the rule book
Rather than playing catch up, do you want to get ahead of the game so you're prepared for tomorrow's world?
Employees have differing views when it comes to what they like - not every one wants a Volkswagen Golf, and many company car schemes take this into consideration. As a concept it works fantastically - instead of having a pool...
April 13, 2012 4:02 PM Read Full Post
Security hardening iPhones and iPads
Get this how-to guide to Tablet and smartphone security
BYOD, or ‘Bring Your Own Device’ is one of the IT trends that I’m sure you know about, if not by that name. Driven by the users themselves, who go out and get cool new kit - iOS, Android, their...
April 12, 2012 9:12 AM Read Full Post
Preventing email data losses - don't boil the ocean
How can organisations protect against data losses, without drowning in email traffic?
The Information Commissioner’s Office (ICO) has issued its first fine for data breaches by email this year, to a Council that sent sensitive personal information to the wrong recipients. Following two previous breaches, the Council in question was fined £120,000...
March 15, 2012 12:42 PM Read Full Post
Five hacker tricks you should be defending against
The most common web attack techniques
Vulnerabilities are everywhere. Knowing where they are is useful, but knowing which one will be exploited is much more useful. Security professionals need to focus on real threats plaguing today’s practitioners and provide up-to-date statistics on actual attack data. As...
February 29, 2012 1:32 PM Read Full Post
SSL domain authentication needs improvement
Should we really be taking the domain owner's word for it?
In her Dark Reading article, "Is SSL Cert Holder ID Verification a Joke?", Ericka Chickowski discusses if certificate authorities do enough identity checking for Domain Validated (DV) certificates. I am myself perhaps notorious for writing that it's not a joke,...
January 27, 2012 2:42 PM Read Full Post
Does RSA understand what happened to them?
This was not just an attack on RSA, it was an attack on all of us
In Tim Greene's article, "RSA security breach has silver lining, says CEO," he quotes Art Coviello as saying "…we were able to minimise the damage…" and that "we've been engaged with customers at a strategic level as never before...
January 18, 2012 8:58 AM Read Full Post
Learning from the AstraZeneca email blunder
Made a mistake? Don't draw attention to it
Leo King's article in ComputerWorld, "AstraZeneca in confidential email blunder," discusses a relatively common thing that happens -- someone sends information they didn't intend to in an email. In this instance, AstraZeneca had to restate their earnings because the email...
January 13, 2012 11:11 AM Read Full Post
EU "No Disconnect Strategy" something to praise
Get involved to make it work
The EU Vice President, Neelie Kroes, has put out a call for what she calls the "No Disconnect Strategy," in which the European Union will provide technical assistance to human rights workers and protesters throughout the world. The press release...
December 30, 2011 4:29 PM Read Full Post
[ 1 ] [ 2 ] [ continued on page 2 >> ]
Powered by the Pagination plugin for Movable Type
