RSS Alerts

Tag Cloud

compliance Cloud encryption cloud computing David Harley cloud security cybersecurity Security

Bloggers

Blog

Follow and talk to Infosecurity's bloggers.

Follow Infosecurity's bloggers as they share their thoughts on the industry, technology, and much more. Our bloggers have been selected for their industry expertise. They welcome interaction, so we encourage you to add your opinions to theirs.

0
comments
Russia Uses 'Single Register' Law To Selectively Block Internet Content
  “Won't somebody please think of the children?” seems to be Russia's refrain when it comes to their recent inception of internet censorship laws. It appears that Russian authorities are chiefly concerned about the promotion of self-harm and suicide via images ...
Posted 22 May 2013 by Jean-Loup Richet
tags: Roskomnadzor , internet censorship, Russia, Jean-Loup Richet, Single Register, Twitter, Censorship laws, Filtering
0
comments
Building Trust and Security through Transparency of Service
By David Baker With the growing movement of enterprises to the cloud, it’s more important than ever that service providers demonstrate and prove good security practices to their customers, in good times and in bad. During an incident, how a cloud provider communicates to its customers says a ...
Posted 21 May 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, cloud security, transparency, SLA, trust, business continuity, availability
0
comments
Liability and the “Commercially Reasonable” Standard
When new technology introduces new legal questions, it can take a long time for courts to sort matters out, and cybersecurity is no exception to the rule. Cyberattacks that yielded major breaches of financial companies in 2008 or 2009 have spawned a series of lawsuits that aim to determine liability ...
Posted 20 May 2013 by (ISC)² U.S. Government Advisory Board Executive Writers Bureau (EWB)
tags: (ISC)2, NIST, FFIEC, Cybersecurity, federal IT, compliance
0
comments
Plugging "Cloud Identity Leaks": Why Your Business Should Become an Identity Provider
By Mark O’Neill Most people have used the Facebook, Twitter, or Google Apps buttons located on websites to log into third-party services. This approach is useful within consumer IT as it enables the user to access various services via their own Facebook, Twitter or Google Apps passwords witho ...
Posted 15 May 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, cloud security, identity, identity provider
0
comments
Securing Credit Card Voice Transactions
This afternoon, I met the CEO (and co-founder) of Semafone, Tim Critchley. When the invitation to interview him landed in my inbox, I was all set to turn it down. As Critchley himself admits, call centre security is “far from sexy”, and it’s not a topic that had ever occurred to me ...
Posted 09 May 2013 by Eleanor Dallaway
tags: credit card, secure , call centre, fraud, payment
0
comments
Talking Infosec Awareness and Training with Kaspersky Labs’ David Emm
Shortly before the chaos of Infosecurity Europe, I joined David Emm, senior security researcher at Kaspersky Lab, for lunch in a lovely quiet gastro pub in the Oxfordshire countryside. Whilst I frequently publish Emm’s quotes and photos in the magazine, we both agreed that this was most likel ...
Posted 03 May 2013 by Eleanor Dallaway
tags: Kaspersky, Infosecurity, Awareness, Security, Cybersecurity
0
comments
Should Information Security Professionals be Licensed to Practice?
Last week we published accompanying editorials from our most recent print edition that asked a rather simple question: Should information security professionals be licensed to practice? Arguing in favor of such a licensing scheme, ISACA’s Alan Boardman lays out several reasons why infosec pro ...
Posted 02 May 2013 by Drew Amorosi
tags: information security, license , education, certification
0
comments
Security Check List: An Ounce of Prevention is Better than a Pound of Cure
By Wolfgang Kandek It is common belief that buying more robust and expensive security products will offer the best protection from computer-based attacks; that ultimately the expenditure pays off by preventing data theft. According to Gartner, more than $50 billion is spent annually on security inf ...
Posted 30 April 2013 by Cloud Security Alliance (CSA)
tags: patch management, security education, security controls
0
comments
Identity Management Plays a Key Role in Mobile Device Management (MDM)
By Dan Dagnall As BYOD and other mobile device related initiatives take hold, sooner rather than later, identity management will once again be considered as an enforcement mechanism; and rightly it should. Identity and access management (IAM) has grown up over the years. Its early beginnings were ...
Posted 30 April 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, MDM, identity, IAM, BYOD
0
comments
How to Adopt the Public Cloud While Attaining Private Cloud Control and Security
By Gerry Grealish Earlier this year, McKinsey & Company released an article titled “Protecting information in the cloud,” discussing the increased use of cloud computing by enterprises across several industries and the benefits and risks associated with cloud usage. The article reco ...
Posted 26 April 2013 by Cloud Security Alliance (CSA)
tags: cloud computing, public cloud, private cloud, encryption, encryption gateway
0
comments
Cloud-Based Identity Management: Best Practices for Rapid End-User Adoption
By Glenn Choquette Identity Management (IdM) is not new. Yet, after all this time on the market, organizations still have mixed results for end-user adoption, as many organizations that rolled-out IdM years ago still haven’t achieved their goals: end-users keep calling the help desk to reset ...
Posted 26 April 2013 by Cloud Security Alliance (CSA)
tags: identity, cloud computing, IdM
0
comments
Will CISPA pass this time?
Recently the controversial Cyber Information Sharing and Protection Act (CISPA) was passed by the US House of Representatives for the second time. The bill would mean that technology and web companies would be able to share any and all of their customers’ private information with government ag ...
Posted 22 April 2013 by Jean-Loup Richet
tags: CISPA, Jean-Loup Richet, internet censorship, hactivism, sopa, pipa
0
comments
Live on-stand interviews & wine: What we're up to at Infosecurity Europe...
Well, it's our last day in the office before we all go on site for Infosecurity Europe next week. There's a lot of excitement (and panic!) in the air...A few bits of news about what myself and the rest of team Infosecurity will be up to at the event next week... First things first, you can find us ...
Posted 19 April 2013 by Eleanor Dallaway
tags: Infosecurity, infosec13, Infosecurity europe, ciso, interview
0
comments
At War with the World
In February, security firm Mandiant made headlines when they declared the hacking team APT1, “likely government-sponsored and one of the most persistent of China’s cyber threat actors”. China denied the involvement. Reuters reported that Hong Lei of the Chinese Foreign Ministry re ...
Posted 18 April 2013 by Eleanor Dallaway
tags: Cyber , Espionage, Cold War, Cybersecurity
0
comments
Web Scrubbing in China
Within days of China being pinpointed as the home of a massive hacking base, the BBC has alleged that China has been regularly blocking their radio and TV broadcasts and their Chinese-language website. A BBC news crew was detained by military personnel and had their video footage confiscated as ...
Posted 15 April 2013 by Jean-Loup Richet
tags: Web Scrubbing, Jean-Loup Richet, China, Censorship, BBC, SEO
0
comments
Cloud APIs - the Next Battleground for Denial-of-Service Attacks
By Mark O’Neill In recent months, there have been a number of highly publicized cyber attacks on US banks. These attacks took the form of Distributed Denial of Service (DDoS) attacks, involving enormous amounts of traffic being sent to internet-facing banking services, rendering them unusable ...
Posted 13 April 2013 by Cloud Security Alliance (CSA)
tags: DDoS, API, cloud computing, mobile apps
0
comments
All that Glitters is Not Gold
The old saying “all that glitters is not gold” can have a particular resonance with us in the Information Security profession, especially at this time of the year. I say this as we are now starting to move into the heart of the information security conference season; the RSA Conference h ...
Posted 12 April 2013 by Brian Honan
tags: technology, vendors, Infosecurity Europe
0
comments
Policing the Virtual Perimeter
A recent spate of targeted denial of service attacks on organisations such as Spamhaus and Bitcoin remind that such attacks are seen as one of the best ways to attempt to halt or slow key internet-based services by those with a motive to do so. Many IT managers probably look-on, shrug their shoulder ...
Posted 11 April 2013 by Bob Tarzey
tags: DDoS, denial of service
0
comments
Kaspersky Lab – Russia’s IT Security Jewel
Naming a company you founded after yourself can be problematic. OK, no one tries to place the blame for HP’s recent woes on Bill Hewlett or Dave Packard (anyway, according to HP’s current management a big turnaround in fortune is underway). However, the ups and downs of Dell are still cl ...
Posted 10 April 2013 by Bob Tarzey
tags: Kaspersky, anti-malware, KESB, zero-day
1
comment
A Little too Much Access, Thank You
So now that it appears the Internet Apocalypse is over and we can all return to life as we know it, (assuming we ever left ) then our weary eyes can turn once more to the ever-fresh subject of cloud security. The recent angst and horror over in Washington (state) suggests that regardless of wh ...
Posted 29 March 2013 by Geoff Webb
tags: AWS, Securosis, Cloud, Security, Simple Storage
123...23NEXTLAST
Showing 1 - 20 of 442 blogs
View the RSS feed for this blog »
Terms & Conditions | Privacy | Website Design| Reed Exhibitions. All rights reserved. Copyright © 2013
We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×