Loading ...-
-
-
BlogInfoSec.com Sponsors
-
BlogInfoSec.com Partners
Category Archives: General
Why Information Security Professionals Should Learn Texas Hold ‘em Poker
June 11, 2008 – 6:00 am
–
“Mathematics and psychology.” That’s poker (including Texas Hold ‘em) according to the legendary poker player Mike Caro. That could also describe the field of information security. In this column, while I’ll show some of the overlap between Texas Hold ‘em Poker…
The Password Dilemema: Improving the Mundane
May 27, 2008 – 6:00 am
–
The weaknesses of passwords used for authentication and authorization are well known. In fact, many security experts feel that using a password as the only means of accomplishing these goals constitute “worst practices.”
As a result, some higher risk entities (banks, governments, etc.) are…
Your Information Security Program: It’s All About The Bones
May 14, 2008 – 6:00 am
–
Welcome once again to the risk rack. This time on the risk rack I will be discussing the bones of an information security program namely the fundamental framework and standards around which you choose to build your program. As with any living and breathing creature the creature’s bone structure…
Human Fallout and the Security Impact of the Sub Prime Crisis
May 13, 2008 – 6:00 am
–
By now everyone heard of, or should I say felt, the impact of the Sub-prime crises on the economy as a whole and on US financial institutions. In particular, the big banks have been affected by having to write off billions of dollars in losses.
In order to help restore their balance sheets, these…
Building an Access Control Framework (pt. 1)
April 16, 2008 – 6:00 am
–
From what I have seen of Identity Management tools, they are more about management than identity, which is fine, once you have solved the the challenge of effectively identifying all the users of your sensitive data. But, slick as they can be, an IdM tool may only automate your existing…
