Mark Diodati

A member of the Gartner Blog Network

Archives for March, 2011


RSA SecurID: What If?

by Mark Diodati  |  March 22, 2011  |  2 Comments

While we wait for more information from RSA about the recent attack on its SecurID tokens, I’d like to revisit a potential attack vector that I discussed in my first blog entry on the topic (March 18). The OTP device’s seed and the serial number are present during the manufacturing process. What if the OTP [...]

2 Comments »

Category: Uncategorized     Tags:

SecurID Redux

by Mark Diodati  |  March 21, 2011  |  Comments Off

After writing about the recent SecurID attack on Friday, I began thinking about the utility of the SecurID symmetric keys (AKA “seeds”) in the hands of the attacker. Specifically, what would the attacker need in order to leverage these seeds to access protected resources? I must emphasize that RSA has (at this point) not stated [...]

Comments Off

Category: Uncategorized     Tags:

Just What Happened to SecurID?

by Mark Diodati  |  March 18, 2011  |  6 Comments

As I write this, RSA has announced it experienced an attack on its RSA SecurID one-time password (OTP) products. You can see Art Coviello’s letter to RSA’s customers here. The letter is very light on the nature of the attacks and what was stolen. In the interest of full disclosure, I worked at RSA for [...]

6 Comments »

Category: Uncategorized     Tags:

UNIX Security and the New sudo

by Mark Diodati  |  March 4, 2011  |  Comments Off

One of the research topics that I am responsible for is UNIX1 security. Very early in my career, I grew to love awk, sed, and the Korn shell. While working out, I listen to Korn, too (That Korn/Korn coincidence never gets old for my sys admin buddies – these pictures are hanging in many enterprise [...]

Comments Off

Category: Uncategorized     Tags: