by Jay Heiser | January 28, 2010 | 3 Comments
Having moved back to the USA after 10 years in Europe, I needed to apply for a US drivers license. Besides a convenient mechanism for collecting traffic fines, there are many situations in which government and commercial authorities require a government-issued photo ID (remember, there is no ‘national’ ID in the USA). Its disconcerting to [...]
Category: security Tags: enrollment, national identity, security, SSN
by Jay Heiser | January 27, 2010 | Comments Off
Google’s January 12 blog about their apparently falling victim to a cyberattack of Chinese origin, a cyberonslaught which also targeted several dozen other commercial and defense corporations, has been thoroughly reported on, blogged, and discussed. There will undoubtedly be a lot of valuable lessons–if we ever learn what actually happened. Hopefully, this will increase the [...]
Comments Off
Category: Cloud security Tags: cybercrime, espionage, malware, mobile code, PDF, spyware, targeted attack, Trojan horse
by Jay Heiser | January 26, 2010 | 1 Comment
I’ve spent a lot of the last 2 years researching the problem of making business decisions about the relative levels of risk associated with partners and service providers. Externally provisioned services, such as Cloud Computing (whatever the service) and SaaS (whatever the computing model) are problematic. We’ve learned a lot about security risk management over [...]
Category: Cloud risk management security Tags: Cloud, cloud security, risk assessment, risk management
by Jay Heiser | January 25, 2010 | 1 Comment
As part of their corporate philosophy of introducing children to real life, several years ago, a German toymaker introduced a whimsical toy to help preschool jet-setters cope with the realities of post 9/11 travel. When my wife tracked down one of Playmobil’s more controversial toys on eBay for my Christmas present, she couldn’t have known [...]
Category: Uncategorized Tags: information security, risk management
