information security

RSS

information security Blogs

  • Obama ID protection plan may be best alternative to data theft

    Posted May 4, 2011 - 2:03 pm

    A federal program outlining how to store identity data securely and regulating the private companies that will do it may be the best option to add some protection online.

  • For Sale: Used computer with secret NASA Space Shuttle data

    Posted December 8, 2010 - 10:58 am

    Forget WikiLeaks, tossing hard drives into publicly accessible dumpsters, selling old computers with no disk wipe is a much more efficient way to release secret information.

  • Review

    Book Review: The Art of Deception: Controlling the Human Element of Security

    Posted September 2, 2009 - 9:56 am

    If I had only one thing to say about The Art of Deception, it would be that it convinced me that even technologically savvy people fall prey to the guile of practiced social engineers (formerly known as a "con artists" to most of us).

  • Good VoIP Deployment Guidelines (Do Not Exist?)

    Posted October 23, 2008 - 8:27 am

    I get questions regarding VoIP deployment all the time. Sometimes it is someone looking for simple and cheap Enterprise VoIP, who are unsure if VoIP can be deployed securely with those two parameters in the equation. More often it is the security aware people who are willing to invest almost anything to make it work, but cannot. As always, there is no silver bullet solution for either. If you look at my past opinions, I keep changing my mind between cheap that works, and secure that doesn't. What do you think? Which way should we go in VoIP?

  • Greatest Challenge in VoIP Security

    Posted July 16, 2008 - 3:08 am

    The greatest challenge in VoIP security is that there are very few good example case studies available. There are some very good VoIP deployments. But try to find a white-paper with someone disclosing all the their success stories in building a perfect VoIP network. No luck! Unfortunately much of that data is hidden in confidential documents. Still, I have really loved to see VoIP security emerge and evolve from being a hindrance in VoIP deployment, into a key marketing value. Finally some of those success stories will get a chance to see daylight.
Ask a Question