-
-
-
BlogInfoSec.com Sponsors
-
BlogInfoSec.com Partners
Risk and Human Frailty
May 9, 2013 – 6:00 am
–
My September 12, 2011 BlogInfoSec column “Risk Management – Scoring vs. Monte Carlo vs. Scoring” was about the subjectivity of risk assessments, where the term “subjectivity” was defined as one’s personal view of particular risks. I received some considerable push-back from the likes…
Hacking Avionics Systems
April 22, 2013 – 6:00 am
–
A researcher has come up with exploits, as described in Zeljka Zorz’s April 10, 2013 blog post “Hacking airplanes with an Android phone,” which enable someone using a smart phone with particular apps to take over the flight management systems of aircraft … see…
Are Perceptions About Cloud Security and Availability Overblown … and Wrong?
April 16, 2013 – 6:00 am
–
It appears that the greatest hindrance for organizations to move their applications and data into the cloud is concern about security and availability. While it is arguable whether or not security and privacy risks and system failure rates and durations are greater overall for cloud-based…
Executive Order on Cybersecurity … PDD 63 Déjà Vu
April 9, 2013 – 6:00 am
–
President Obama’s “Executive Order – Improving Critical Infrastructure Cybersecurity” … available at http://www.whitehouse.gov/the-press-office/2013/02/12/executive-order-improving-critical-infrastructure-cybersecurity was a long time coming and, as my colleague Jason Healey pointed…
Convenience vs. Data Breaches … Avoidance is an Answer
March 26, 2013 – 6:00 am
–
In “If You’re Collecting Our Data, You Ought to Protect It” in the Business Section of The New York Times of February 17, 2013, Natasha Singer describes how a data breach involving the personal nonpublic information of some 40,000 current and former NASA employees was preceded by an…
