While the trend toward Web-based apps could send the traditional desktop computing model packing its bags, IT managers are just beginning to ponder how the security landscape might change.
According to one study, some 84% of network attacks could have been thwarted if, after checking the user ID and password, the organization had simply authenticated the identity of the invasive computer with commercially available software.
BofA, Citigroup, Time Warner, Fidelity...There's plenty of evidence of data theft and tape loss. This article focuses on the security designs for 'data at rest' and the activities in the IEEE 1619 standards committee supporting storage security.
Few "ethical" hackers can provide simulated attacks with the level of sophistication that Cenzic offers in its Hailstorm "hacker in a box" penetration tester.
What's the safest way to protect data on old hard drives? Pound. Pound. Pound. Pound them into little pieces. That's the advice of one security analyst who says data crooks are buying recycled hard drives and mining them for data.
Before jumping onto the Web 2.0 bandwagon, ActiveGrid's Peter Yared suggests that you give some thought to issues involving security vulnerabilities. (MP3)
PreEmptive Solutions wants to ensure that enterprises don't eschew obfuscation in their application life-cycle practices with its Dotfuscator for .Net and DashO Pro for Java tools.
Without automatic code scanning tools, scanning the source code requires a keen eye, concentration and an enormous amount of time to scan each line for security vulnerabilities.
