Tag Archives: Common Criteria

Heartbleed, Open Source, and Internet Security

May 19, 2014 – 6:00 am – On page A5 of the April 24, 2014 issue of The Wall Street Journal, there is a full page “Paid Advertisement” with the title “Internet Security and Heartbleed.” The ad, which is in the form of a letter from Klaus Brandstätter, CEO of software company HOB, touts HOB-SSL as a replacement for…
By | Posted in CSO/CISO Perspectives, General, Information Security News | Also tagged , , , , , , , | Comments (2)

Are Mainframes Really More Secure?

September 17, 2012 – 6:00 am – Some two decades ago, I wrote a column in the Fall 1993 edition of the long-since departed magazine, Securities Industry Management, with the title “Two Cheers for Mainframes—The future may lie in distributed technology, but don’t junk your old iron just yet.” I made statements in the…
By | Posted in CSO/CISO Perspectives, General | Also tagged , , , , , , | Comments (0)

The Quest for Secure and Resilient Software

July 19, 2010 – 6:00 am – Secure and Resilient Software Development (CRC Press, 2010) by Mark Merkow and Laksh Raghavan is a really good book. It addresses a key security area that is generally given short shrift, even though purportedly more than 70 percent of breaches result from attacks on the application layer. The…
By | Posted in CSO/CISO Perspectives, Security Metrics, Technical | Also tagged , , , , , , , , , | Comments (0)