SEARCH RESULTS
 
Showing 1-10 of 42 records
 
Expand article

Intellectual Property- what is it and how do we secure it?

2007-12-29 06:43:45 by Editor in Security Links
 
...manual, then Intellectual Property Law, Fourth Edition provides a worldwide perspective and introduction to the subjects Both the books mentioned above are available for immediate despatch from the IT Governance online store. IT Governance have searched the book publishing world exhaustively for the most interesting and highly authoritative...
 
Tags: intellectual property, treaties, international patent treaties, major copyright agreements, agreements, copyright, rights, intellectual property rights, copyright legislation
 
 
 
 
Expand article

Software Security Metrics and Commentary on "Metrics Framework" Paper

2007-09-17 20:41:00 by Security Retentive in Security Retentive
 
...Manual review Broken Access Control AnomalousSessionCount Runtime Audit Trail review Broken Authentication / Session Management BrokenAccountCount Runtime Account Review Cross-Site-Scripting XsiteVulnCount Deployment Pen Test Tool Buffer Overflow OverflowVulnCount Deployment Vuln Testing Tools Injection Flaws InjectionFlawCount Runtime Pen...
 
Tags: metrics, software security metrics, metrics framework, metrics miss, design-time metric, design, upstream sdl metrics, application, web application security
 
 
 
 
Expand article

Risk ROI for Some Provisioning Solutions

2008-04-19 02:22:29 by Erik T. Heidt in Art of Information Security
 
...manual updates in favor of automated entitlement updates All provisioning solution providers strive to have a compelling story for these items. Additionally, these were the focus of the first generation of solutions which emerged in the 90s For the Identity Management programs with which I have been involved, automation and risk management...
 
Tags: information security, information, entitlement, entitlement lifecycle, solutions, systems, risk roi, information security podcast, identity
 
 
 
 
Expand article

When Too Much Security Means No Security at All

2007-12-24 12:30:19 by Posted By: Paul Proctor, Research VP in IT Leaders - Security and Risk Management
 
...manual governing the handling of confidential information. But in the days after the data breach, HMRC apparently decided that the manual itself was so sensitive that it had to be kept confidential. According to the media reports, only senior staff are allowed physical access to the manual, while lower-level personnel receive only a Web-based...
 
Tags: policy, security policy guidelines, enterprise security, enterprise security framework, security, enterprise, official hmrc policy, security policy process, effective enterprise security
 
 
 
 
Expand article

Integrating Event/Incident and Problem Management

2008-10-14 18:00:59 by David Link in ScienceLogic
 
...Manual Phone call from IT ops to IT service desk staff member: 46 Manual click button on event manager to open trouble ticket: 20 Automated event management system automatically opens trouble ticket without requiring human oversight or approval: 24 Unbelievable still very few of the survey respondents have yet to formalize problem management...
 
Tags: management, event management systems, event, management processes, management pieces, management systems, management integration, event management system, systems
 
 
 
 
Expand article

Security Tidbits

2007-12-26 19:58:00 by NGO Security in NGO Security
 
...manual published by the New Zealand government. Entitled Security in Government Sectors , even though the manual isn't NGO-specific, it's quite comprehensive and has a lot of good information that can be applied outside government circles. Definitely worth a bookmark A belated pointer to humanitarian adviser (and frequent commenter to NGO...
 
Tags: security, humanitarian security topics, nice security manual, manual, french aid workers, strong accountability message, court, chad court, zealand government
 
 
 
 
Expand article

Manuals (CIA and NGO)

2008-05-07 16:57:00 by NGO Security in NGO Security
 
...manual day, and here's a quick selection of interesting manuals to read At the top of the list is the CIA's Psychology of Intelligence Analysis by Richards J. Heuer. This is a must read if you're into critical thinking and the inner game of security. It covers information gathering, analysis and the various biases that can creep in and...
 
Tags: manuals, humanitarian security manuals, security, manual, introductory humanitarian security, midweek manual day, analysis, intelligence analysis, covers information
 
 
 
 
Expand article

NSA Attacks West Point! Relax, It's a Cyberwar Game

2008-05-10 01:00:00 by David Axe in Wired Security
 
...manual tweaking of the SQL database to "avoid any surprises," in the words of Lt Col. Joe Adams, a West Point instructor who helped coach the team But the kernel-level rootkit was much more dangerous. This stealthy operating-system hijacker can open unseen "back doors" into even highly protected networks. When they detected the rootkit's...
 
Tags: army university, army, custom-built networks, networks, nsa, army cadets, west, cadets, network
 
 
 
 
Expand article

Massive SQL Injection Attacks - the Chinese Way

The Article has images
2008-10-21 16:18:48 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...manual into the use of a very powerful and flexible module, the main sites used for some special filtering into the hand, is almost a universal tool, you can achieve the following 1. In support of GET / POST / COOKIES in a variety of ways, such as the injection 2. Scan the key to the page (background, upload, WebShell, databases, backup...
 
Tags: keyword detection, detection, database, database solution, solution, process, upload process, text, load solution
 
 
 
 
Expand article

Microsoft Hits Back at Atsiv

2007-08-02 22:17:32 by Editor in Cheap Hack