(lowercase) a renewal of life, vigor, interest, etc.; rebirth; revival: a moral renaissance
Believe it or not, the field of Information Security has changed! Foundational concepts, such as the traditional C-I-A triad (Confidentiality, Integrity, and Availability) are being challenged and supplanted by a more inclusive model known as the Parkerian Hexad [1]. The Parkerian Hexad augments the traditional C-I-A triad by adding three elements. The result is a […]
This was a crazy week. Here’s a quick rundown:
Wal-Mart eavesdropping situation
On Tuesday, I submitted a feature to Computerworld providing speculation related to the recent Wal-Mart eavesdropping situation. For those following the situation, I refer you to 4 significant articles:
The initial story
My take on what may have happened (human nature run amuck)
Fired employee speaks out
LA […]
For years, security professionals have known and been saying that passwords themselves are inadequate — thus the need for two-factor (or stronger) authentication. However, multifactor authentication implementations are typically known to be costly (e.g. issuing tokens or biometric readers). Further, many companies report user push-back: some end-users reject or express disdain for biometric […]
In my last post, I mentioned that I was thinking about adding a resources section to the site. Well, I now have the beginnings of this section up. It is located at: http://SecurityRenaissance.com/resources and currently contains the following essays:
Mobile Malware (short essay)
The emerging mobile malware threat (long essay)
Ethical Considerations for IT and Security Professionals
Analyzing the […]
I’m a big fan of Gary McGraw’s Silver Bullet Security podcast. Last week I listened to episode 9 which featured an interview with Bruce Schneier (of whom I am also a big fan).
I was a bit taken back when Bruce said that, in today’s world, “security is all about technology.” To be fair, he did […]