Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Category Archives: InfoSec Economics

Outsourcing and Offshoring – Now Insourcing and Reshoring

– There have been hints about the recent movement towards “insourcing” and “reshoring,” along with the usual confusion regarding terms used. In the December 2012 issue of The Atlantic magazine (pages 45-52), there was a noteworthy article by Charles Fishman called “The Insourcing Boom,”…

Will Cloud Security Drive You Insane?

– First, the transparency … I have known Jim Reavis, co-founder of the Cloud Security Alliance (CSA), for a dozen years or so. He is a true visionary. He met with me before creating the CSA and asked me what I thought. I told him to go for it. He did and has had remarkable success […] …

Nastier at NASDAQ and the ROI of Security

– Here is a correction to “Nastiness at NASDAQ” BlogInfoSec, March 7, 2011. The first sentence of the second paragraph should read “From my particular perspective, the most disturbing aspect of the incident, as reported, is that either NASDAQ staff or law enforcement apparently do NOT know…

The Economics of Safety and Security

– One of the most horrifying comments through the entire Japanese mega-catastrophe was that by CNBC anchor Larry Kudlow, as reported in a March 20, 2011 New York Times article by Jeff Sommer with the title: “A Crisis That Markets Can’t Grasp – As Japan’s Disaster Evolves, Wall Street Keeps…

Vindication for Toyota? Proving the Negative

– In my February 16, 2010 Bloginfosec column “Negative Testing Revisited – Vehicle Control Systems (Part 1),” I describe and discuss the concerns about the software controlling the brakes on Toyota regular-engine and hybrid vehicles and Ford hybrids. The supposition was that there were…