Features

Take the pain out of patching

Take the pain out of patching

Television news anchors became the news in August when they had to apologize on-air for computer problems affecting their broadcast. The world watched as ABC and CNN were struck by the Zotob worm.
Rene Millman Oct 10 2005 6:45PM Security
Get it together

Get it together

Whether you have a SOX problem or a HIPAA ailment, it is becoming more tempting to enlist a SIM. But beware what you’re buying into. Vendors are heavily hyping their security incident management (SIM) wares as the cure-all for meeting regulatory compliance standards such as the Sarbanes-Oxley (SOX) and Health Insurance Portability and Accountability Acts (HIPAA). If anything, they’re half right.
Jim Carr Oct 10 2005 6:32PM Security
Opinion - Without clarity you will fail

Opinion - Without clarity you will fail

Some readers will recall that I can be a bit picky when using terms to describe things. We run into confusion when we are vague about terms and descriptions. This can be especially troublesome when we are handling an incident and adrenaline is running high.
Peter Stephenson,CeRNS, Oct 10 2005 6:11PM Security
Tackling mobile security

Tackling mobile security

Very few companies worry about the cost of replacing mobile devices, it’s more about the value and amount of data that resides of mobile devices and the adverse consequences to the company if the data on these devices falls into the wrong hands.
Martin Allen Oct 4 2005 5:41PM Security
Messaging - is it an instant threat?

Messaging - is it an instant threat?

Instant messaging (IM) has triumphed in the past 2-3 years among personal internet users as well as within companies.
Dr. Horst Oct 3 2005 11:19AM Security
Review: Nokia Secure Access System

Review: Nokia Secure Access System

This is not actually an SSL VPN, but a network security platform (IP300) on which you can then run other services – like an SSL VPN.
Jon Tullett Oct 3 2005 12:00AM Security
Review: PortWise SSL VPN

Review: PortWise SSL VPN

PortWise 4.0 is a software solution, although we received it preconfigured on a Sun V20z running RedHat ES. We might have been better off setting it up ourselves: we had to log in to a root shell to get the network configured, and while the documentation is great for setting up actual SSL VPN services, it was not much use at the outset.
Jon Tullett Oct 3 2005 12:00AM Security
Review: Disk Protect

Review: Disk Protect

Disk Protect from Becrypt is a competent hard disk encryption that looks very good on paper.
Peter Stephenson,CeRNS, Oct 3 2005 12:00AM Security
Review: DiskCrypt

Review: DiskCrypt

DiskCrypt from Digisafe is unique among these products. Rather than being a software product that you use to encrypt your hard disk, DiskCrypt is a hard disk that comes pre-encrypted.
Peter Stephenson,CeRNS, Oct 3 2005 12:00AM Security
Review: Encryption Plus Hard Disk

Review: Encryption Plus Hard Disk

This had the most promise of all the products tested. It is easy to install, has lots of nice administrative options and is robust and well-certified.
Peter Stephenson,CeRNS, Oct 3 2005 12:00AM Security
Review: OfficeLock

Review: OfficeLock

This is not a disk encryptor like most of the products on test, because it encrypts individual document files transparently. Indeed, it was designed and intended completely for enterprise use, and requires an external copy of Microsoft SQLServer in order to install.
Peter Stephenson,CeRNS, Oct 3 2005 12:00AM Security
Review: Aventail Smart SSL VPN

Review: Aventail Smart SSL VPN

Aventail has one of the best-organized web management GUIs we have used. A startup wizard got us going via the console port, although there was a brief delay when the documentation left the ‘s’ out of https, leaving us unable to connect.
Jon Tullett Oct 3 2005 12:00AM Security
Review: Base5

Review: Base5

Permeo’s Base5 is a RedHat-based solution that turns a standard server into an SSL VPN. Obviously, this means you need to supply your own server, and you will need to check the hardware support – our first attempt to install the software crashed anaconda (RedHat’s installer) in its usual ugly way.
Jon Tullett Oct 3 2005 12:00AM Security
Review: AEP Netilla Security Platform B-Class

Review: AEP Netilla Security Platform B-Class

We were interested to see how the AEP Netilla Security Platform would shape up, following this year's merger of AEP and Netilla.
Jon Tullett Oct 3 2005 12:00AM Security
Review: Array SPX 5000

Review: Array SPX 5000

Array’s SPX5000 is a fully-featured appliance, with a superb set of VPN features. But it took some time to establish that, as the setup process was challenging. It started with a CLI network setup, complete with out-of-date documentation.
Jon Tullett Oct 3 2005 12:00AM Security
Investing in identity management

Investing in identity management

More efficient management, more productive staff and improved data security; just some of the advantages of Identity Management. On the other hand it can often involve high implementation costs and levels of project complexity. Only consistent ROI calculations can accurately define the benefits of such a solution. While it is relatively easy to establish concrete ROI criteria for the topic of efficiency, it is much more complicated to do so for the topic of security.
Dr. Martin Sep 26 2005 11:37AM Security
Ignore application security at your peril!

Ignore application security at your peril!

With malicious attacks at an all time high, the emphasis put on securing the corporate network has led to many companies investing in technologies such as firewalls and intrusion detection systems. Yet whilst companies have been busy securing the network, they have largely ignored the area of application security.
Sarah Saltzman Sep 19 2005 2:26PM Security
Hackers for hire

Hackers for hire

Forget the outdated hacker image of a spotty anarchic teenager holed up in his bedroom defacing the websites of global organizations; today’s hackers are not only older but more determined than ever to claim your cash and identity.
Mark Murtagh Sep 7 2005 2:30PM Security
More rigour, less geek, more respect

More rigour, less geek, more respect

In my position, I get to read an awful lot of submitted articles, supposedly from infosec professionals with centuries of experience between them. And I also get along to a lot of conferences where many of the same people share their wisdom with the rest of the world.
Ron Condon Sep 5 2005 5:04PM Security
Debate» Should governments force the ISPs to provide clean bandwidth?

Debate» Should governments force the ISPs to provide clean bandwidth?
Jonathan Mepsted Sep 5 2005 4:57PM Security

Log In

  |  Forgot your password?