-
-
BlogInfoSec.com Sponsors
-
BlogInfoSec.com Partners
Sense of Security written by C. Warren Axelrod
Cyber – The 13th Event?
July 26, 2010 – 6:00 am
–
The featured topic on the cover of the June 2010 issue of Scientific American has the title “12 Events That Will Change Everything – And Not in the Way You Think.” The events, and the likelihood of them happening (according to the authors of the pieces on each event), are as follows, with…
The Quest for Secure and Resilient Software
July 19, 2010 – 6:00 am
–
Secure and Resilient Software Development (CRC Press, 2010) by Mark Merkow and Laksh Raghavan is a really good book. It addresses a key security area that is generally given short shrift, even though purportedly more than 70 percent of breaches result from attacks on the application layer. The…
Are Risk Models or Data to Blame? Yes!
July 12, 2010 – 6:00 am
–
On the front page of the June 24, 2010 issue of The Wall Street Journal there is an article by Neil King Jr. and Keith Johnson with the title “BP Relied on Faulty U.S. Data.” When you turn the page (note that I’m reading the actual physical newspaper, not an electronic version, so I…
Black Swans … or Oil Victims?
June 29, 2010 – 9:15 am
–
There is an article in The New York Times Magazine of June 6, 2010 by David Leonhardt with the title “Underestimating Risk: What the oil spill and the financial crisis have in common.” It is in a section called “The Way We Live Now,” and next to the section heading there is a drawing of…
Response to Gary Hinson
June 29, 2010 – 6:00 am
–
First, you should know that I very much agree with and respect Gary Hinson’s approach to infosec. I have frequently quoted his definitive paper “Seven myths about information security metrics,” which first appeared in the July 2006 issue of The ISSA Journal, and which you can on the website…