Browse by Tags

• access technologies
• authentication
• biometrics
• email
• risk mitigation
• security myths
• security science

Security myths and passwords

I like this a lot. http://www.cerias.purdue.edu/weblogs/spaf/general/post-30/ In the practice of security we have accumulated a number of “rules of thumb” that many people accept without careful consideration. Some of these get included in policies, and Read More...

Posted 30 April 06 09:07 by Steve Riley | 3 Comments   
Filed under authentication, identity, passwords, security myths, security policies

What do YOU need out of two-factor authentication?

Two-factor authentication continues to grow in popularity and emerge as a security requirement for many people I meet with. At Microsoft, we use smartcards internally for VPN access right now; soon we'll be requiring smartcards for domain logon, too. Read More...

Posted 20 April 06 03:37 by Steve Riley | 43 Comments   
Filed under access technologies, authentication, biometrics, email, identity, passwords, risk mitigation, security policies

It's me, and here's my proof: why identity and authentication must remain distinct

My February Security Management column is posted: http://www.microsoft.com/technet/community/columns/secmgmt/sm0206.mspx No matter what kinds of technological or procedural advancements occur, certain principles of computer science will remain -- especially Read More...

Posted 16 February 06 09:41 by Steve Riley | 7 Comments   
Filed under authentication, biometrics, identity, passwords, risk mitigation, security policies, security science

Search

This Blog

• Home
• About
• Email

Tags

• access control
• access technologies
• Active Directory
• advertising
• authentication
• aviation security
• biometrics
• BitLocker
• blogging
• conferences and seminars
• configuration
• email
• encryption
• false claims
• group policy
• home and family security
• identity
• IPsec
• ISA Server
• malware
• music
• my book
• NAP
• networking
• passwords
• patch management
• physical security
• protection
• public policy
• risk mitigation
• RMS
• security myths
• security policies
• security science
• security theater
• spam
• SSL/HTTPS
• TechEd
• Terminal Server
• the trade press
• things that make me angry
• things that make me laugh
• things that make me worried
• threats
• VPN
• Windows Vista
• wireless

Archives

• August 2008 (2)
• June 2008 (2)
• April 2008 (1)
• February 2008 (7)
• January 2008 (1)
• November 2007 (1)
• October 2007 (3)
• September 2007 (5)
• August 2007 (2)
• July 2007 (4)
• May 2007 (2)
• April 2007 (1)
• February 2007 (1)
• January 2007 (3)
• December 2006 (2)
• November 2006 (3)
• October 2006 (2)
• September 2006 (6)
• August 2006 (1)
• July 2006 (3)
• June 2006 (1)
• May 2006 (2)
• April 2006 (2)
• March 2006 (5)
• February 2006 (2)
• January 2006 (3)
• November 2005 (5)
• September 2005 (4)
• August 2005 (2)
• July 2005 (5)
• June 2005 (5)
• April 2005 (3)
• March 2005 (2)
• February 2005 (2)
• January 2005 (1)

Syndication

• RSS 2.0
• Atom 1.0