by Neil MacDonald | July 7, 2009 | 5 Comments
I saw this in an article today on Bloomerberg: July 7 (Bloomberg) — Goldman Sachs Group Inc. may lose its investment in a proprietary trading code and millions of dollars from increased competition if software allegedly stolen by a former employee gets into the wrong hands, a prosecutor said. Full details of the theft were [...]
Category: Application Security Tags: Application Security, Security No-Brainer
by Neil MacDonald | June 25, 2009 | Comments Off
In my previous post, I talked about the need to encrypt all desktop and server direct attached storage for protection of the data over the lifecycle of the machine, including retirement. In this post, I made this statement in passing: Most of us know by now that encryption of mobile laptops should be considered mandatory. [...]
Comments Off
Category: Endpoint Protection Platform Information Security Tags: Endpoint Protection Platform, Information Security, Security No-Brainer
by Neil MacDonald | June 24, 2009 | 2 Comments
Most of us know by now that encryption of mobile laptops should be considered mandatory. However, encryption of the direct attached storage used in fixed desktops and servers hasn’t been a priority because of their relative lack of mobility. However, this overlooks the significant issue of data leakage when devices are retired. This point was [...]
Category: Information Security Next-generation Security Infrastructure Tags: Endpoint Protection Platform, Security No-Brainer
by Neil MacDonald | May 11, 2009 | Comments Off
In my last post, I talked about several impending inflection points for information security. One of them was: More than half of our employees spend the majority of their working hours connected to networks we don’t own and don’t control (airports, hotels, home, wireless, 3G and so on) This brings me to my fifth security [...]
Comments Off
Category: Endpoint Protection Platform Next-generation Security Infrastructure Tags: Endpoint Protection Platform, Security No-Brainer
by Neil MacDonald | May 1, 2009 | 2 Comments
Let me summarize my security no-brainers to date: The first was in reference to a global, industry-wide effort to create a shareable, standards-based application whitelist database built directly from feeds from ISVs. The second was in reference to the use of whitelisting in the hypervisor/VMM (especially the “parent” or Dom0 partition) layer to prevent the [...]
Category: Application Security Beyond Anti-Virus Tags: Application Security, Security No-Brainer, Whitelisting
by Neil MacDonald | April 18, 2009 | 1 Comment
During the course of my blogging activities, this is the third time I’ve talked about something the security industry should do that I believe is so obvious that I called it a “no-brainer”. The first was in reference to a global, industry-wide effort to create a shareable, standards-based application whitelist database built directly from feeds [...]
Category: Next-generation Data Center Virtualization Security Tags: Hypervisor Security, Security No-Brainer, Virtualization Security, vSphere
by Neil MacDonald | April 10, 2009 | 10 Comments
As I have discussed, x86 hardware virtualization creates a new IT platform that must be securely maintained (e.g. patch, configuration and vulnerability management) like any other IT platform we are responsible for. This layer is extremely sensitive as a compromise of this layer puts all of the hosted VMs at risk. I’ve also discussed the [...]
Category: Beyond Anti-Virus Virtualization Security Tags: Security No-Brainer, Virtualization Security, Whitelisting
by Neil MacDonald | April 3, 2009 | 9 Comments
My previous post on whitelisting has generated a lot of comments. Buried in the comment stream, I made this statement: I look forward to the time (hopefully soon) when an industry consortium or worldwide standards effort brings together legitimate ISVs to create a shareable whitelist for all to use. Whitelisting is foundational to any information [...]
Category: Beyond Anti-Virus Endpoint Protection Platform Tags: Beyond Anti-Virus, Security No-Brainer, Whitelisting
