Loading ...
BlogInfoSec.com Sponsors
BlogInfoSec.com Partners
-
Recent Comments
- Navin on Why Information Security Professionals Should Learn Texas Hold ‘em Poker
- john doe on An Analysis of the Privacy Rights Clearinghouse “Chronology of Data Breaches” and Implications for Information Security Professionls (pt. 1)
- Adam Shostack on PCI DSS Position on Patching May Be Unjustified
- Jens Laundrup on PCI DSS Position on Patching May Be Unjustified
- Kris on Medical Identity Theft: Your Money or Your Life
Tags
agility algorithms application security assessment awareness Awareness / Education awareness instruction awareness training bloginfosec Annoucements Books on InfoSec breach incidents Budgeting for Security business continunity CIA triad CISO CISO savvy CISO skills COBIT Coding Securely / SDLC Conferences / Events / Meetups contingency plans counterfeit counterfeit equipment data breaches data breach notification laws data classification digital signature disaster recovery education Encryption end-point security equipment Exploit Code / Malware facebook fake FBI featured FFIEC Forensics / Incidents FUD Theater GLBA governance government Gramm-Leach-Bliley hackers hash HIPAA honeynet honeypot identity management identity theft IDM incident Industry Commentary Information security Interviews ISACA Jobs in Information Security Johnny Long KPMG leadership Legal & Regulatory Issues malicious insider malware metrics nation states network News Commentary No Tech Hacking OWASP Patching PCI Penetration Testing perimeter Phishing Policies and Procedures Privacy Privacy Rights Clearinghouse Reverse Engineering risk risk management ROI ROSI SB 1386 Security security awareness Security Breaches self-awareness Social Engineering soft skills Solutions / Workarounds SPAM spotlight successful behaviors Tools training Uncategorized Virtual Trust Viruses / Worms vulnerability assessment Vulnerability Commentary Vulnerability Disclosure Wireless Wireless Client Wireless Discussion Wireless Security Wireless Vulnerability Discussion
Tag Archives: Encryption
Security Tidbits of Interest
June 30, 2008 – 10:00 am
–
Did you know that Al-qaeda uses PGP?
Analysts said that as-Sahab is outfitted with some of the best technology available. Editors and producers use ultralight Sony Vaio laptops and top-end video cameras. Files are protected using PGP, or Pretty Good Privacy, a virtually unbreakable form of…
Is Your Hash Going Stale?
April 15, 2008 – 6:00 am
–
Every good security program has a process for regularly reviewing its technical security controls for things like adequacy and correctness of operation. But one area of controls that is often overlooked is that of cryptographic hash functions. Sure, the key lengths used for your cryptographic…
Protecting PDAs: A Cautionary Dilemma
January 18, 2008 – 6:00 am
–
Normally, the minimum standard security recommendations for corporate PDAs are:
Lock the device with a pin
Encrypt the data on device
This effectively means that if you loose your PDA it’s now a brick.
The other day I found a unlocked PDA (see images). By accessing this…
Blame it on Security: Vista Home Edition Cannot Run in Virtualization Software
February 23, 2007 – 7:15 am
–
MSNBC reports Vista Home Edition cannot run in virutalization software due to bluepill rootkit threats:
The least-expensive versions of Vista actually would work in virtualization programs. But Microsoft wants to restrict it because of new security holes spawned by the technology, according to…
A 2 for 1 Post: Richard Clarke - Right & Wrong / My Thoughts on the Future of Infosec