Update Before You Leave! And Other Advice for the Cyber Road Warrior
I recently traveled to Denver to attend the American Society for Training and Development’s (ASTD) International Conference and Exposition (ICE). I stayed at the Embassy Suites next to the conference venue, the Colorado Convention Center. (The conference was fantastic, by the way, but that’s not what this post is about…) While I was there the […]
This Java Threat Is Really Confusing
For several months, there were rumblings in the hacker underground about some serious threats to Java and Apple’s OS X. ComputerWorld reported in late February 2012 that a new variant of an exploit called Flashback was making its rounds of Macs by using the browser and Java to get in. CNN followed by reporting that […]
Migrating to the Cloud: Do You Need Assistance?
Cloud technology intimidates many organizations. The mechanics of setting it up are very different from the traditional model. Several companies offer services establishing and maintaining cloud architectures for their customers. Many people call these providers “cloud brokers.” To me, the term “cloud concierge” or “cloud butler” is far more descriptive. I guess I’m thinking of […]
What Is Computer Security?
What is “computer security”? When Adrian Bryan and I set out to write our Introduction to System and Network Security course for Learning Tree some years ago, we needed to start with a definition. It served as a sort of goal or guiding light in writing the course materials. The definition is from Simson Garfinkel […]
Why Must We Still Fear the BEAST, and What Can We Do?
Most Internet communications security is provided by the SSL/TLS series of protocols. There is an enormous problem with early versions of SSL/TLS. We have known about this problem since 2002, and a solution has been available since 2006. Sadly, we still need to worry about this. Here is a brief timeline: SSL v1 — Only […]