Features
Product Section: Two staples of information protection
This month, we have juxtaposed two of the foundations of information security: data protection and vulnerability assessment. On the protection side, we look at some of the key products in the area of whole disk encryption.
Jan 8 2007 10:02PM
Security
Review: SealedMedia E-DRM
SealedMedia is a client/server implementation with four components. A license server manages what the company calls a classification-based rights model; a management website offers provisioning for users, rights model management and documentation; and a management console is used for administration. The final part is the desktop, the user's tool for sealing documents.
Jan 8 2007 12:00AM
Security
Is someone listening to your keyboard?
Floppies are obsolete, CRT monitors are a dying breed and CPU cores are multiplying every year. Since the early days of modern computers, research companies have redesigned, reinvented and revolutionised every aspect of computers except one: the ever faithful keyboard.
Jan 2 2007 10:57PM
Security
Match your company policies with your solutions
The headlines are scary for both CIOs and the companies they work for. "Stolen Computer Holds Information of 16,000 Driver's License Holders," "Vulnerability Auctions Killing Responsible Disclosure," "Hacking for Dollars: Is The Botnet Battle Already Lost?" "Online Brokerage Account 'Incursions' Worry SEC."
Jan 2 2007 9:30PM
Security
Review: Multi Network Firewall 2
Mandriva's Multi Network Firewall 2 uses the open source OpenVPN and takes some of the difficulty out of using this approach. We found that the web interface helps make simple steps of creating users and user certificates, which streamlines the process immensely. We liked the organized web interface and found it easy to use.
Dec 18 2006 12:00AM
Security
Review: Tenable Security Center
The Tenable Security Center has massive capability wrapped in a single, easy-to-navigate interface. While the overall use of the application is fairly intuitive, once users explore more deeply, they may find that it becomes complex and intricate. This allows for great flexibility, but also requires some time of using the product and learning how to maximize its capability for the specific environment.
Dec 18 2006 12:00AM
Security
Review: TriGeo SIM
From the time it is plugged in, all the way through day-to-day management, TriGeo SIM is simple to use. The appliance comes with many rule sets already preconfigured for most security situations, while setting rules for specific environments is made easy by the Rule Builder. This tool uses different modules with rule parts that you just drag and drop into the right place and the rule is created. Filters also are easy to configure using the same process. The main console interface is simple and intuitive to navigate as well.
Dec 18 2006 12:00AM
Security
Review: Activeworx Security Center
We found this product required some time to work with and to learn about its massive capability. Set-up overall was fairly simple, but the user interface is a little clumsy in the beginning. The Security Center desktop is quite overwhelming at first, with multiple view selections, tabs and tree menus. But once we started working with the interface, we found it quite efficient.
Dec 11 2006 12:00AM
Security
Review: ID-Certify
We now find ourselves in a world of regulatory compliance. It didn't use to be that way, but it is a fact of life we cannot ignore. In a sense, it is good for us who administer and manage IT systems as it forces us to adopt responsible practices, especially around access control.
Dec 11 2006 12:00AM
Security
Review: Solsoft Policy Server 7
Within any sizeable network, the issues around maintaining known configurations from a security perspective can become problematic. Similarly, maintaining a compliant infrastructure, together with its attendant processes, can represent quite a challenge. Add to this the requirements for change control, access control and other factors, and one can readily appreciate that this challenge can become significant in terms of both resource and cost.
Dec 11 2006 12:00AM
Security
Vista validates encryption for mobile and endpoint security
Long viewed as a major vector for incoming threats such as viruses, malware and worms, organisations are also increasingly viewing laptops as a primary weakness in the fight against the theft, loss and misuse of information.
Dec 6 2006 9:57PM
Security
Training to nullify the insider threat
In the last decade, the security of your information on your networks has been focused on protecting the integrity of data from outsiders. Much of the effort has been based on perimeter security - from outsiders trying to break into the network.
Dec 6 2006 9:06PM
Security
Hot or not: Holiday threats
The holiday season is officially underway. Retailers are bustling around to display choice merchandise, while consumers are busy spending. With businesses focused on meeting their end-of-year sales goals and planning for 2007, security may not be a top priority, which can be a costly mistake.
Dec 6 2006 8:49PM
Security
A network security strategy for the age of terrorism
Just as bacteria evolve around the technological barriers we put in their place, so too do the tactics and strategies employed by computer attackers. When a security measure is put in place, our enemies immediately set out to exploit its weakness. When they are repelled, they adapt their tactics and strategies, regroup and come back yet again.
Dec 5 2006 6:42PM
Security
