Loading ...
BlogInfoSec.com Sponsors
BlogInfoSec.com Partners
-
Recent Comments
- Navin on Why Information Security Professionals Should Learn Texas Hold ‘em Poker
- john doe on An Analysis of the Privacy Rights Clearinghouse “Chronology of Data Breaches” and Implications for Information Security Professionls (pt. 1)
- Adam Shostack on PCI DSS Position on Patching May Be Unjustified
- Jens Laundrup on PCI DSS Position on Patching May Be Unjustified
- Kris on Medical Identity Theft: Your Money or Your Life
Tags
agility algorithms application security assessment awareness Awareness / Education awareness instruction awareness training bloginfosec Annoucements Books on InfoSec breach incidents Budgeting for Security business continunity CIA triad CISO CISO savvy CISO skills COBIT Coding Securely / SDLC Conferences / Events / Meetups contingency plans counterfeit counterfeit equipment data breaches data breach notification laws data classification digital signature disaster recovery education Encryption end-point security equipment Exploit Code / Malware facebook fake FBI featured FFIEC Forensics / Incidents FUD Theater GLBA governance government Gramm-Leach-Bliley hackers hash HIPAA honeynet honeypot identity management identity theft IDM incident Industry Commentary Information security Interviews ISACA Jobs in Information Security Johnny Long KPMG leadership Legal & Regulatory Issues malicious insider malware metrics nation states network News Commentary No Tech Hacking OWASP Patching PCI Penetration Testing perimeter Phishing Policies and Procedures Privacy Privacy Rights Clearinghouse Reverse Engineering risk risk management ROI ROSI SB 1386 Security security awareness Security Breaches self-awareness Social Engineering soft skills Solutions / Workarounds SPAM spotlight successful behaviors Tools training Uncategorized Virtual Trust Viruses / Worms vulnerability assessment Vulnerability Commentary Vulnerability Disclosure Wireless Wireless Client Wireless Discussion Wireless Security Wireless Vulnerability Discussion
Tag Archives: Policies and Procedures
The Password Dilemema: Improving the Mundane
May 27, 2008 – 6:00 am
–
The weaknesses of passwords used for authentication and authorization are well known. In fact, many security experts feel that using a password as the only means of accomplishing these goals constitute “worst practices.”
As a result, some higher risk entities (banks, governments, etc.) are…
UK likely to get National ID cards
January 25, 2008 – 6:00 am
–
While the US population is mainly against national ID cards, that might not be the case in the UK.
BBC’s Nick Robinson reports that:
Most people will be issued with ID cards when they apply for what are called “second generation passports” (ie those which carry our…
Marketing Value-add: Airport Security Friendly Shoes
January 23, 2008 – 6:00 am
–
Florsheim is marketing airport security friendly shoes! The tag reads:
This shoe affords all the comfort and support of a normal steel [?] without the anticipated travel delays. so pick up a pair. And proceed directly to your gate for departure.
You can find a full list of Florsheim airport…
Equifax: We Corrected Your Info, Here’s Who Submits Your Info
January 22, 2008 – 6:00 am
–
After some hassle (here, here) and a recommendation, Equifax sent me a letter explaining that they corrected my information and enclosed a list of everyone with whom I have a line of credit. They suggested that I contact them as well.
Hopefully, the ordeal is over!
…
Executive Jailed After Airport Bomb Question and TSA Rant