by Ramon Krikken | May 3, 2012 | 1 Comment
We’re always trying to get closer to developing more useful security metrics, and examining analogies provides a way to relate these measurements and metrics to things we already know (and that we perceive as being done and measured well). I like good analogies, but I don’t want to be limited by not-so-good ones. “Flying an [...]
Category: Security Tags: airlines, airplanes, analogies, attacks, av, business process, hackers, ids, risk, security metrics, siem
by Ramon Krikken | March 30, 2012 | 2 Comments
Although we have little information available at the moment about the latest credit card processor breach (source: Krebs on Security), it is a good opportunity to continue the conversation on how the usage patterns of data in a business process change (or not!) the dynamics of security exposure. Merchants have been able to take advantage [...]
Category: Security Tags: breach, business process, payment processing, PCI-DSS, risk aggregation, tokenization
