Will the user define security policies in the future?
I think, I blogged about this event already earlier: Years ago I was meeting a customer and was talking about the future of IT. I was telling the audience (about 10 people including the Security Officer) that there is a good chance that IT will not define a set of hardware anymore but that the user will buy their own and use it for business. Additionally, different people have different ...
Get off XP or Risk your Business?
One of the highest hit rates I ever had on my blog was one I wrote right before Conficker broke out. I called it Playing Russian Roulette with your Network. The background was, that we released an out of band security update and our customers came back and asked us, whether they really shall deploy it – this situation then led to Conficker.
About 12 months from today, Windows XP will ...
Security in 2013 – the way forward?
Typically January is the month where we are asked to make predictions on the trends for the New Year. I do not like this as I am an engineer and not a fortune tellerJ. But there are things we know and things we definitely need to drive this year. I would actually put it into the context of typical hygiene of any IT environment.
Let's try to understand, where we stand ...
The Directory in the Cloud?
It seems that it is an eternity ago – and it is. Pretty much three years ago, Doug Cavit and me published a paper called the Cloud Computing Security Considerations. Even though it is three years, the paper is still worth reading as the content still applies. What we basically said was, that if you look at the Cloud, there are five areas of Considerations:
Compliance and Risk Management: Organizations shifting ...
Two Papers on Current Issues By Roger Halbheer, on October 26th, 2012 Trustworthy Computing just released two papers on current issues:
Determined Adversaries and Targeted Attacks Whitepaper
This paper shares Microsoft’s insights into the threat that Determined Adversaries and Targeted Attacks pose, identifies challenges for organizations seeking to combat this threat category and provides a context for other papers that will directly address each of those.
http://www.microsoft.com/en-us/download/details.aspx?id=34793
and
New MMPC Threat Report on Rootkits Now Available
Rootkits provide stealth capabilities to malware. This Microsoft Malware Protection Center threat report examines how attackers use rootkits, how rootkits function on affected computers and recommendations that can help organizations mitigate the risk from rootkits.
http://www.microsoft.com/en-us/download/details.aspx?id=34797
Happy reading
Roger
Leave a Reply
|
|
|
