Software as a Service (SaaS), a method for delivering software applications to customers over the Internet have only really been available for approximately seven years. Due to this fact, many information technology people – as well as company managers and owners - know very little about SaaS due to its recent emergence.
Is it that cybercrime is really on the increase or is it simply that the reporting of cybercrime has increased?
In an article written by Paypal CISO Michael he states that
Scott Merill wrote a great article on the latest research revealed at the 25th Chaos Communication Congress (CCC). Basically this team of researchers utilized a collision attack against the MD5 algorithm to create a rogue certificate authority. This is huge news!
I recently joined the Jericho Forum in London. The Jericho Forum is the leading international IT security thought-leadership association dedicated to advancing secure business in a global open-network environment. The members include top IT security officers from multi-national Fortune 500s & entrepreneurial user companies, major security vendors, government, & academics.
HIPAA enforcement within the U.S. officially got underway with the first sanction applied the the Department of Health and Human Resources (HHS) in July; I blogged about it here.
About Telstra International
Telstra is a Tier 1 carrier who has built a class leading business serving the Australian home markets and International managed services. Our revenues exceed £9.4 Billion and we delivered profits in excess of £1.845 Billion last year.
The Open Group runs quarterly conferences, which include plenaries and tracks which are open to the public. The theme for our Munich Conference is Secure Architectures, and the following one in San Diego will also have a focus on security architecture.
I've spent some time lately in discussions around Web Application Firewalls. WAFs seem to be a hot topic in recent times and with PCI DSS 6.6, many people are now starting to look at these technologies.
Though, with the PCI SSC council watering down the 6.6 requirement, I questioned here whether they were required at all under PCI DSS:
http://tinyurl.com/4rtkdf
