Encryption is “Exponentially Easier” to Break, But What Does That Really Mean?
Dec 16, 2013
In Learning Tree’s System and Network Security Introduction course we talk a little about risk management. Unless you can put numbers on a thing, it’s hard to discuss it or plan for it (or plan how to avoid it!) in a meaningful way. A startling result from late summer is still getting some attention. It’s […]
Password Rules Accomplish Things, But Not Necessarily What You Expect Or Want
Oct 2, 2013
I am very skeptical of passwords. Rules for password length and complexity may offer a feeling that you are behaving safely but they provide much less security than promised. As we see in Learning Tree’s Cloud Security Essentials course, the major cloud providers configure their Linux servers providing the majority of the cloud Infrastructure-as-a-Service so […]
We Need Randomness!
Sep 17, 2012
What is entropy? if you ask a chemist or physicist, entropy is disorder or heat. If you ask an electrical engineer, entropy is both of those but it is also a measure of potential information content. James Glieck’s wonderful book The Information addresses this in detail, but the short version is that an unpredictable data […]