|
Your living room - where Television, Internet and PC meet |
PDF |
| Print | |
E-mail |
HDTV and Blu-Ray appear be fueling strong growth in convergence of the PC, consumer electronics and the Internet. Someone is seeing dollar signs and questions need to be answered: - Why are big companies like Microsoft, Sony, Sanyo, NEC and Intel involved?
- Do consumers really want Web services on their TV set?
- Why are the big Telecom firms driving deployment of IP (Internet Protocol) TV?
- What will happen with DRM?
- Will digital asset protection become a central issue ?
|
|
Read more...
|
|
|
10 Top Mistakes of Embedded Linux Users |
PDF |
| Print | |
E-mail |
In this article I will try to explain what are the top 10 mistakes made by Linux developers as I see it. I'm aware that one person's mistake is another person's best practice. My comments are therefore subjective.
|
|
Read more...
|
|
Business Threat Modeling |
PDF |
| Print | |
E-mail |
Business Threat Modeling - A practical methodology for anticipating, assessing and mitigating risk to today's business
What risks really count for your business? No question is more important for implementing an effective program of security countermeasures for your business. The management board, IT and security practioners cannot expect to mitigate risk effectively without knowing the sources and cost of threats to the organization.
This article shows that reduction of defects in enterprise business applications can be a highly effective
approach for anticipating, assessing and reducing operational risk.
We present the results of an assessment performed with a customer running a manufacturing and online sales operation. Risk was reduced to a minimum by selective defect-reduction at a cost of less than 3 percent of asset value. The cost was an order of magnitude less than acquisition of a proprietary system for preventing leakage of credit cards and privacy information. A robust software tool for threat modeling and risk calculation in dollar values supports the process. |  | |
|
Read more...
|
|
DRP Disaster Recovery Plan |
PDF |
| Print | |
E-mail |
The article describes a plan and implementation process for disaster recovery planning. The secret to success in our experience is to involve the local response team from the outset of the project.
|
|
Read more...
|
|
Protecting Source Code with DLP |
PDF |
| Print | |
E-mail |
|
How to use data leakage protection (DLP) to protect your source code. Black holes. That's a word most developers fear.A black hole is a programmer stuck in her
cubicle for 6 weeks without hope of meeting her deadline. A black hole is also losing your source code and not knowing how or where. |
|
Read more...
|
|
Automating ISO 27001 |
PDF |
| Print | |
E-mail |
What do you do when you run out of gas with Microsoft Excel? This article describes how the ISO 27001 risk assessment process can be automated using Practical Threat Analysis and the PTA threat modeling database.
|
|
Read more...
|
|
Cost-effective digital content security |
PDF |
| Print | |
E-mail |
The distribution of video over multicast-broadcast networks and content storage at by users with Windows PCs and PVRs
has created a huge threat surface for digital content.
|
|
Read more...
|
|
Securing XML Web services at VISA |
PDF |
| Print | |
E-mail |
|
VISA International is rolling out Web services to member banks
to improve the process of card holder disputes - a process which has
been until now on paper.
Visa has announced that it secures the inter-enterprise Web services transactions using Secure FTP
sessions over SSL. That is it? Secure FTP?
When securing Web services, SSL is definitely not enough and I would expect Visa to address a number of other key software security assessment issues.
|
|
Read more...
|
|
Taxonomy of content monitoring |
PDF |
| Print | |
E-mail |
Conventional network security wisdom is based on a firewall/IPS combination at the perimeter. However, these countermeasures are insufficient for preventing data theft.
|
|
Read more...
|
|
Insider attacks on confidential data |
PDF |
| Print | |
E-mail |
|
Insider attacks on confidential data, have made identity theft the fastest growing crime world wide. A firewall/IPS cannot protect digital assets and customer data. The first step to extrusion prevention starts with the boardroom.
|
|
Read more...
|
|
|
|
|
|
