Meta

Register
Login
Site Admin
Logout

Archives

All that Information, and So Personal

Visiting the doctor’s office is a nightmare for the Data Privacy Professional. One glance at all that paper reaching as far as the eye can see and all containing so much PII. Nancy Northrup discusses a new encryption product which shows potential for slowing the persistence of the [...]

February 16th, 2010 | Tags: , , , | Category: Privacy | Leave a comment

Popular encryption software flaw details published

The recently unveiled flaw in SSH reiterates the idea that, no matter how good the technology, it will eventually fail from a whole host of threats. In this case, the implementation flaw occurred in a software product that had been previously “proven secure”. Real world implementations are more complex than security models, and other mitigations must be in place when a design does finally [...]

May 29th, 2009 | Tags: , , , , , , , , , , , , , , , , | Category: CIPP, Hacking, Information Security | Leave a comment

EXCLUSIVE: Interview with Heartland Payment Systems' Executive Director, Mr. Steven Elefant

We had a chance to talk with Mr. Steven Elefant, Executive Director of end-to-end security at Heartland Payment Systems shortly after the security breach reportedly affecting hundreds of millions of credit card transactions. While the complete interview is available in the forums, we include a few excerpts in the articles section of the [...]

May 28th, 2009 | Tags: , , , , , , , , , , , , | Category: Compliance & Regulations, Information Security | Leave a comment

Proposed bill shows State's Rights sometimes fall to bad federal legislation

Proposed legislation H.R. 2221 by Illinois Representative Rush seeks to preempts more restrictive privacy laws on the books in several states. While the Data Accountability and Trust Act handles several important information privacy issues, the State’s Rights infringement could hurt citizens’ [...]

May 27th, 2009 | Tags: , , , , , , , , , , , , | Category: CIPP, Compliance & Regulations, Privacy | Leave a comment

Secure Messaging Gateway: An Ironport Review

Over the weekend, I did a lot of reading on a company in the mail gateway business called Ironport. I mean a lot of reading. This was another consolidation (see Why behemoths buy startups & March 08’s Information Security Magazine’s Schneier/Ranum Face Off), with Cisco snatching up the market leader.

I read about capabilities, product offerings, market penetrations, strategic positioning, competitors and magic quadrants. All of this was at the urging of a friend of mine at Cisco, and how this product would drive profits for the company for the next several quarters.

I did a similar [...]

March 26th, 2008 | Tags: , , , , , , , , | Category: Information Security | Leave a comment

Want to avoid wiretaps or questionable search and seizure? Try a secure computer on USB

Everyone wants a certain comfort level, especially with computers. You like finding your programs on your system. You want your bookmarks in FireFox or your buddy list on Instant Messenger. What if you were able to do carry all of this on a USB thumb drive? In fact, what if you were able to bring your entire “computer” with you on a USB memory stick? How could you hope to secure it against viruses, keystroke loggers, or even un-trusted/hostile networks? What about other users poking around for your files, or maybe reading your emails?

Not [...]

October 8th, 2007 | Tags: , , , | Category: Information Security, Privacy | Leave a comment