Steve Riley on Security

Formerly of Microsoft's Trustworthy Computing Group.

March, 2006

  • A CEO who should be fired

    So the CEO of an important customer of ours (no, I won't tell you who it is) claims to be, um, "very technical" and therefore keeps his own Windows domain and refuses to be part of the corporate forest. Go ahead, take a moment to express your astonishment;...
  • Domain controller security: it starts at layer zero

    Recently I seem to have had the same conversation over and over again, in places as far apart as Jakarta, Winnipeg, and Berlin. The question is usually worded like this: "What happens if someone steals one of my domain controllers?" There is...
  • File under: "You've got to be kidding!"

    Today I upgraded the brain on my i-mate K-JAM. Which, of course, requires a hard reset, meaning that I get to spend a relaxing day re-installing and configuring all my applications. Usually when I do this (too frequently, it seems) I browse around for...
  • It's time to stop playing war games in the name of "security"

    Really interesting article. Military mindset no longer applicable in our line of work http://searchsecurity.techtarget.com/columnItem/0,294698,sid14_gci1171862,00.html My favorite bit: "Obviously, secrecy is important to business, as is the ability...
  • Update to my appearances

    Some dates have changed: we had to move the days for the Southeast Asia roadshow in Viet Nam. Also, I'm speaking at MEDC (Mobile and Embedded DevCon) this year -- a presentation on how Microsoft's IT department secures mobile computing. I've updated the...