Endpoint Security

Cloud computing poses unique security challenges. Here's how cloud-specific 'security incident-response teams' could help governments and large enterprises respond to malicious activity and make the cloud more trustworthy. Insider (registration required)

Find out what Microsoft's forthcoming OS means for developers, admins, network security, mobile usage, and more

For a security industry leader, Tim Williams is a pretty modest guy. As the former head of ASIS International and now as global security director for the $42.5 billion construction equipment manufacturer Caterpillar, Williams has won his share of recognition, which he doesn't take lightly.

For years the Enterprise Service Bus (ESB) has been seen as a corporate integration and messaging backbone upon which application architectures are built. However, this concept must evolve to meet the requirements of today's corporate landscape, where IT boundaries are blurring, driven by the need to integrate with partners, cloud and mobile applications.

Adam Laurie lived a few Novembers as a dog earlier this year. By duplicating the RFID tags used to identify pets in the U.K. and sewing it into his watch strap, Laurie, an independent security researcher, re-created his dog's ID as a hacking exercise. However, this kind of virtual animal cloning could become a serious issue as industrialized countries roll out RFID-based systems to keep track of their livestock.

A decade ago, William Beaumont Hospital, a 254-bed community hospital in Troy, Michigan, had a problem with a small number of rogue employees who were stealing narcotics from a storage area. The solution: a biometric hand geometry system, which identifies individuals through hand measurements.

Imagine if all you had to do to authenticate your online ID was to think of a line from your favorite song. In Ottawa, Canada, Carleton University researchers are working on a biometric device that would read your brainwaves; instead of passwords, you'd have "pass-thoughts."

Sony BMG Music Entertainment has been lambasted for shipping its spyware-like XCP software on music CDs over the past year, but an important question has gone largely unanswered throughout the controversy: Why didn't security vendors catch the problem sooner?

Amid the need for authenticate emails for regulatory compliance and contract purposes, companies are increasingly adopting digital signatures for all email. Find out what you need to know to set up a public/private key system for digital signatures.

Security-conscious businesses will spend a total of $528.4 million on ID- and access-management systems this year, and spending will top $1 billion by 2009, according to research from IDC. This article looks at three companies that have already taken the plunge.

The speed with which anti-virus vendors McAfee and Symantec reacted to a series of attacks designed to exploit their processes for issuing anti-virus updates demonstrates that they're more nimble than they often get credit for.