http://www.itsecuritylink.com/information_security IT Security Link | Information Security en http://www.itsecuritylink.com/node/154 I recently joined the Jericho Forum in London. The Jericho Forum is the leading international IT security thought-leadership association dedicated to advancing secure business in a global open-network environment. The members include top IT security officers from multi-national Fortune 500s & entrepreneurial user companies, major security vendors, government, & academics. http://www.itsecuritylink.com/node/154#comments Fri, 24 Oct 2008 09:59:32 +1100 leesa 154 at http://www.itsecuritylink.com http://www.itsecuritylink.com/node/150 I've spent some time lately in discussions around Web Application Firewalls. WAFs seem to be a hot topic in recent times and with PCI DSS 6.6, many people are now starting to look at these technologies. Though, with the PCI SSC council watering down the 6.6 requirement, I questioned here whether they were required at all under PCI DSS: http://tinyurl.com/4rtkdf http://www.itsecuritylink.com/node/150#comments Sat, 19 Jul 2008 17:24:27 +1000 Drazen Drazic 150 at http://www.itsecuritylink.com http://www.itsecuritylink.com/node/144 (It just smells different!) Anyone remember the <a href="http://en.wikipedia.org/wiki/Cypherpunk">Cypherpunk</a> movement? Those were the people who invented anonymous remailers, were the first to deploy PGP on a wider scale and were generally a crypto-political movement to establish cryptography (and privacy) in the then nascent public Internet. http://www.itsecuritylink.com/node/144#comments members_opinions Mon, 26 May 2008 09:03:26 +1000 Peter Berlich 144 at http://www.itsecuritylink.com http://www.itsecuritylink.com/node/143 (This one would almost be worth a separate category on IT Security Link, called "Politics".) http://www.itsecuritylink.com/node/143#comments members_opinions Mon, 26 May 2008 08:06:15 +1000 Peter Berlich 143 at http://www.itsecuritylink.com http://www.itsecuritylink.com/node/128 Adam Boileau's release of code to take ownership of a Windows system as reported in recent press is nothing new. He first released this 18 months ago at Ruxcon 2006 when working with Security-Assessment.com (Australia/Asia Pacific now known as Securus Global and NZ now owned by Datacraft). So why the press now? http://www.itsecuritylink.com/node/128#comments Wed, 5 Mar 2008 20:02:28 +1100 Drazen Drazic 128 at http://www.itsecuritylink.com http://www.itsecuritylink.com/node/106 All hail the gods of security!! We bow at the altar of our security gods : Kerberos and his father Typhon, PKI, 2FA, 17799, 27001. But ALL must bow at the altar of the greatest of these gods, Compliance.<br /> <br /> So let's get serious – what is compliance? Literally “compliance” (from dictionary.com) is :<br /> <br /> 1. the act of conforming, acquiescing, or yielding. http://www.itsecuritylink.com/node/106#comments Wed, 19 Sep 2007 11:18:03 +1000 Stephen Ford 106 at http://www.itsecuritylink.com