Browse by Tags

All Tags » Technology » Security   (RSS)
Why it pays to be secure – Chapter 3 – But how do I?
Our EMEA Security Program Manager, Henk van Roest, started this series internally and with his consent I am publishing it here in my blog as I think it contains a lot of great information for you to use. Security — you hear about it every day. Being responsible Read More...
Posted 18 October 09 08:20 by rhalbh | 0 Comments   
Filed under , , , , , ,
Patch Management, a key step towards compliance!
As you might have read, I recently blogged about my infrastructure and the future of a platform towards a better management of compliance – honestly, I actually played with our latest technology . I wrote about Deploying PKI Time Sync on Virtual DCs Now, Read More...
Posted 22 May 09 02:18 by rhalbh | 0 Comments   
Filed under , , , , , , ,
The Carbon Footprint of Spam
McAfee just published an interesting report as they are taking a different approach on Spam. They were looking at the environmental impact of Spam. So, how much energy do we have to invest in order to fight spam? These are the key findings from their Read More...
Posted 25 April 09 09:36 by rhalbh | 1 Comments   
Filed under , , , ,
Network Access Protection Design Guide
If you are looking into deploying Network Access Protection, have a look at the recently published Network Access Protection Design Guide Roger Read More...
Posted 10 October 08 08:02 by rhalbh | 0 Comments   
Filed under , ,
Some Thoughts on UAC
I blogged several times already on UAC as this has been (and partly still is) a very disputed security feature in Windows Vista (which I still support!). I just found today a not really new blog post on UAC, which I think is worth reading. It is from Read More...
Posted 06 October 08 11:27 by rhalbh | 0 Comments   
Filed under , , , ,
Why I do not like e-voting (part 3)
It goes on and on and on: Read this one Judge Suppresses Report on Voting Machine Security Roger Read More...
Posted 05 October 08 01:24 by rhalbh | 0 Comments   
Filed under , ,
The “successful” attack on Cardspace
I guess you read it as it was pretty wide-spread in the press in the last few days: On the Insecurity of Microsoft's Identity Metasystem CardSpace . Well, is there any official Microsoft reaction to it? No, not yet and if you look a little bit more in Read More...
Posted 02 June 08 09:38 by rhalbh | 3 Comments   
Filed under , , ,
The latest SQL Injection Attacks
Well, there was quite some chatter over the last few weeks with regards to the massive defacements we saw based on SQL Injection Attacks. So, what was really new? Close to nothing. Well, this is not completely true. The new thing we have seen with these Read More...
Posted 30 May 08 09:39 by rhalbh | 1 Comments   
Filed under , , ,
Why Apple has to fix the Safari flaw
Remember me talking about Is Security Research Ethical? I made a statement in there when it comes to responsible disclosure of vulnerabilities: And then, what does the vendor do with it? Does the company act on it? Now, we can debate on what a vulnerability Read More...
Posted 30 May 08 09:19 by rhalbh | 1 Comments   
Filed under , ,
Security Risks of Virtualization
One fact strikes me pretty often: Companies have the problem that they have legacy software running on legacy operating systems (e.g. NT4) running on legacy hardware. This is a severe problem as you all know. Now, these companies look into virtualization Read More...
Posted 21 May 08 05:51 by rhalbh | 2 Comments   
Filed under ,
8 Dirty Secrets Of The Security Industry
I just read this article called 8 Dirty Secrets Of The Security Industry , which seems pretty nasty. Let's briefly have a look at them: Vendors do not need to be ahead of the hackers; they only need to be ahead of the buyer : Wow, this is a bad statement Read More...
Posted 03 May 08 10:17 by rhalbh | 1 Comments   
Filed under , ,
Best Practices for Microsoft PKI & Certificate Management
You might know Brian Komar. He wrote numerous books on PKI and Certificate Management and he is a well-known speaker at quite some events like TechEd and IT Forum. Now, nCipher organized a Webimar on Best Practices for Microsoft PKI & Certificate Read More...
Posted 29 April 08 09:19 by rhalbh | 0 Comments   
Filed under , , ,
Security Risks of VoIP
Internet Telephony Has Security Problems : This was an interesting read this morning for different reasons: First of all, it is not surprising (even if we would not have known the problems it would have to be expected). I liked the statement: The goal Read More...
Posted 03 April 08 08:42 by rhalbh | 0 Comments   
Filed under ,
How to do security in Development
Michael Howard just pointed us to a resource that could be interesting for you as well – it was new to me at least J We have a set of short videos (3-10 min.) on how to address some security challenges in development: "How Do I?" Videos for Security And Read More...
Posted 02 April 08 04:09 by rhalbh | 0 Comments   
Filed under ,
Analysis of recent vulnerabilities
Michael Howard just wrote a post about recent vulnerabilities of third-party applications he looked into. This is pretty interesting as it shows certain challenges of current processes (e.g. what do you do with third-party software you rely on?): Recent Read More...
Posted 05 January 08 08:21 by rhalbh | 0 Comments   
Filed under , ,
More Posts Next page »

Search

This Blog

Chat directly with me if you want. Go to my About page to find a web messenger!

Visit ourPhoto Gallery

Locations of visitors to this page

Rogers Security Blog at Blogged Add to Technorati Favorites

Syndication

Page view tracker