Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: RSA

InfoSec Defenders are “Losers” per RSA

– The annual RSA Conference in San Francisco is a great event for meeting and greeting, A record of some 20,000 visitors was claimed to have attended the latest conference during the last week of February, 2012. Visitors have an opportunity to see and touch the latest vendor creations in one place…

The FFIEC and Password-Generating Tokens

– In June 2011, the FFIEC (Federal Financial Institutions Examination Council) issued a “Supplement to Authentication in an Internet Banking Environment,” available at http://www.ffiec.gov/pdf/Auth-ITS-Final%206-22-11%20(FFIEC%20Formated).pdf The FFIEC comprises five financial regulatory…

Take Heed of Lockheed’s Plight (Update as of 6/7/2011)

– Note:  Due to breaking news concerning the Lockheed breach, this article—originally published on Monday, June 6—has been updated. Update: According to an article in the June 4, 2011 New York Times by Christopher Drew with the title “Stolen Data Is Tracked to Hacking at Lockheed,” Lockheed…

Take Heed of Lockheed’s Plight

– I recall, about a decade ago, Dan Geer presenting to members of the FS-ISAC (Financial Services Information Sharing and Analysis Center) and warning that as security measures strengthened so we put more valuable assets under their protection. Then, if there is a breach of that particular mode of…

The Economics of Safety and Security

– One of the most horrifying comments through the entire Japanese mega-catastrophe was that by CNBC anchor Larry Kudlow, as reported in a March 20, 2011 New York Times article by Jeff Sommer with the title: “A Crisis That Markets Can’t Grasp – As Japan’s Disaster Evolves, Wall Street Keeps…