Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: Virtual Trust

Linus Torvalds: Security a matter of opinion

October 3, 2007 – 6:00 am – I found this on Slashdot. It points to an article here. Here is Torvalds on security: “Schedulers can be objectively tested. There’s this thing called ‘performance’, that can generally be quantified on a load basis. “Yes, you can have crazy ideas in both schedulers…
By Kenneth F. Belva | Posted in General | Also tagged , , , | Comments (2)

Could non-SOX Compliance be blamed on Microsoft?

September 25, 2007 – 6:01 am – Check out about this serious MS Excel multiplication bug? How does one spell SOX compliance (or non-compliance!)? …
By Kenneth F. Belva | Posted in General | Comments (0)

A Clarification For Shostack

August 27, 2007 – 7:00 pm – In response to “Security Advantage: I don’t buy it:” while it’s true that Dr. Gordon wrote that “distinguish itself as having much better information security than its competitors, then that organization may well derive a “competitive advantage” that was not the…
By Kenneth F. Belva | Posted in General | Comments (1)

Please Read: My Policy on Publishing Email Correspondence

August 21, 2007 – 6:00 am – The other weekend I had an interesting experience. I always assumed that blogging is public and that any email correspondence between bloggers should be kept private — that’s why it’s sent via email and not posted on the blog! — unless one asks and is granted permission to…
By Kenneth F. Belva | Posted in General | Also tagged , , | Comments (0)

Dr. Gordon: Information Security can have a positive return

August 20, 2007 – 6:00 am – Before I begin, I’d like to thank Dr. Gordon for an interesting exchange of emails regarding information security economics, specifically enablement and positive return through information security assets. The information security ROI debate was quite heated at times, sometimes bloody.…
By Kenneth F. Belva | Posted in CSO/CISO Perspectives, InfoSec Economics, Security Metrics | Also tagged , | Comments (3)