We've posted a new article on policy compliance and remediation. Here's an excerpt:

 
Continue reading Improving Policy Compliance with Automatic Remediation...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Dan Sullivan | Articles and Analysis | Permalink | Comments (0)

People have known about a fundamental flaw in a major Internet protocol ten years or so and it still isn't fixed so a couple of researchers decided to demonstrate. Anton "Tony" Kapela and Alex Pilosov demonstrate the design flaw (not a bug, this can't be patched) in the Border Gateway Protocol (BGP) at DefCon. The exploit tricks routers into redirecting traffic to an eavesdropper's network.

 
Continue reading How Long Will We Wait to Address Fundamental Flaws?...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Dan Sullivan | | Permalink | Comments (0)

The LA Times story Public, private sectors at odds over cyber security is not your typical high profile security story. Rather than focus on a single data breach or a new vulnerability, it looks at the question of how to address fundamental flaws in existing infrastructure. The answers are not promising.

 
Continue reading Private, Public Sectors Look to Each Other to Solve Security Problems...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Dan Sullivan | Articles and Analysis | Permalink | Comments (0)

Ruby on Rails is a powerful framework for developing Web database applications. In this podcast we look at security tips related to user input, model/controller separation, core Ruby functions, and basic database security measures.

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Dan Sullivan | Podcast | Permalink | Comments (0)

Is it day 7 already, or is it 6? I haven't blogged for days on the topic because, well, there isn't much to say about switching from desktop to online applications. While that itself is a point worth noting, there are more substantive aspects of online apps worth discussing. Earlier posts are here and here.

I am realizing it isn't so much a question of how can I get all the features of desktop apps from online apps but how does working online enable me to do things differently and more efficiently.

 
Continue reading Trading the Desktop for the Cloud: Day 7...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Dan Sullivan | Articles and Analysis | Permalink | Comments (0)

The seasonal drama of electronic voting machines begins again. Today the Washington Post is reporting that a programming error in some Premier Election Solutions (once known as Diebold) machines dropped votes when transferring data to central servers.

 
Continue reading Voting Machine Drops Votes, Vendor Blamed Anti-Virus...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Dan Sullivan | Articles and Analysis | Permalink | Comments (0)

The September issue of Scientific American is dedicated to the future of privacy. Topics include:

 
Continue reading Scientific American on Privacy...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Dan Sullivan | Articles and Analysis | Permalink | Comments (0)

The second day of this experiment of using online tools to repalce the desktop showed a couple of weak links but still no major problems.

 
Continue reading Trading the Desktop for the Cloud: Day 2...

Digg it!

Sphere it!

Del.icio.us

Reddit!

Newsvine

Posted by Dan Sullivan | Articles and Analysis | Permalink | Comments (0)