Data Protection, Management and Leakage
 
Showing 1-10 of 60 records
 
Expand article

The importance of key management

2008-08-22 12:56:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
As encryption and data protection becomes more prevalent, dont forget the equal importance of managing those keys. This seems to be the message from Jerome Wendt I think there are two sides to the story here - while I agree that managing keys is important, I think this is something users SHOULD NOT be concerned about. This is something the...
 
Tags: key management, implementation variances, users, product level, keys, equal importance, data protection, jerome wendt, stumble
 
 
 
 
Expand article

And the attacks keep coming...

2008-08-21 20:29:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
Seems like the intensity and frequency breaches have just started to warm up! Even as we pat ourselves about the recent indictment of criminals we see reports of increased activity . Millions of cards stolen and more loss Brings us back to a hard question we have to ask ourselves - are we ready to tackle this seriously? Vendors, retailers,...
 
Tags: hard question, recent indictment, crime, frequency breaches, huge stake, upper hand, retailers, pat, bit
 
 
 
 
Expand article

Twelve billion dollars!

2008-08-13 14:37:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
...security company Jefferson Wells . The amount is a result of simple multiplication - 41 million x $300 for each card lost. On the higher end, no doubt While I don't think the real cost is anywhere close to that (even by an order of magnitude), it is still a large number. Even at street price of $2 per card, someone must be making 41 million...
 
Tags: million, million cards, security company jefferson, card lost, card, street price, simple multiplication, illegal stuff, evil sound
 
 
 
 
Expand article

Smackdown on data criminals

2008-08-05 21:05:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
...information and detect those, whether here or abroad, that conspire to exploit technology for criminal gain, " said U.S. Attorney Michael J. Sullivan I agree with the US Attorney - we need better ways to prevent such hacking. But one point is clear again in this case - those who hack work for increasingly sophisticated criminal enterprises...
 
Tags: identity theft, major, major indictment, complex identity theft, retailers, major retailers, attorney, attorney michael, deploy significant resources
 
 
 
 
Expand article

Laptops can be seized at the US border

2008-08-01 18:28:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
...Security to seize and analyze laptops as folks cross the border. Will this will increase the propensity of folks to encrypt their laptops or reduce it (thereby reducing suspicion)? I don't think businesses will look at this as another reason to encrypt - the majority would rather data not be stolen or lost than think about what a border agent...
 
Tags: border, laptops, border agent, folks, folks cross, analyze laptops, homeland security, encrypt, personal machines
 
 
 
 
Expand article

Keeping corporate secrets - the data centric security approach

2008-07-28 20:13:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
...security technology that organizations can use to prevent such breaches Interestingly enough, the trends they talk about are very data-centric - "Secure the message as well as the medium" and "Address data at rest, in flight and in use In particular I like this paragraph Even with SSL (Secure Sockets Layer) and VPN, strong passwords, fire...
 
Tags: data, security, address data, gargantuan data breach, security patches, secure, secure sockets layer, data-centric, security technology
 
 
 
 
Expand article

Data breaches: Technology, process or management?

2008-07-28 16:32:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
Being part of a technology company, one tends to think of solutions to data breaches as mainly to be solved by technology. Well, with a bit of process thrown in for good measure as well! Did not think much about the important role of management till now Just came across an interesting opinion by Jonathan Armstrong , a partner at Eversheds , a...
 
Tags: management, data breaches, management till, technology, tylenol crisis, crisis, executives, jonathan armstrong, jonathan
 
 
 
 
Expand article

For your hacking pleasure - Cold Boot utilities released!

2008-07-23 13:32:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
Interesting news over the weekend. Looks like one of the original researchers from the Princeton Cold Boot attack work, Jacob Applebaum, published all the utilities they used to break full disk encryption products We, at BitArmor, have talked a bit about cold boot and how we protect against it. Our CEO Patrick and a few of our senior engineers...
 
Tags: cold boot, disk encryption products, ceo patrick, original researchers, utilities, jacob applebaum, senior engineers, princeton days, black hat
 
 
 
 
Expand article

Virtualization and information-centric security

2008-07-21 16:33:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
...information-centric security paradigm becomes even more important There are no devices to lock down (these will be virtual - appearing and dissapearing as required). Much of the data will be accessed from virtual containers. Therefore, protecting the data itself, regardless of the applications, the devices, the networks will become crucial...
 
Tags: security, data, data protection implications, core, security paradigm, core infrastructure strategy, virtual containers, virtual, devices