Access "Fixing the math in the wake of Snowden's NSA surveillance reveal"
This article is part of the February 2014 Vol. 16 / No. 1 issue of Cyberthreats: Know thy enemy
One of the responses to early salvos of former NSA contractor Edward Snowden's surveillance releases was "trust the math." That's how security veteran Bruce Schneier put it in a posting to his blog site. Snowden himself, when answering reader questions on the Guardian website, said, "Encryption works. Properly implemented strong cryptosystems are one of the few things that you can rely on." A lot of us heaved a huge sigh of relief upon hearing that. Not because NSA surveillance will reveal our big, dark secrets, but if the security community can't say with confidence that it stores the world's digital data securely, it's time to dismantle the industry. And beyond that, privacy is essential. A sense of privacy fosters self-aware, independent identities, which are fundamental to creating modern civilization. Problems in theory It appears Snowden was wrong -- at least, partially -- about NSA's access to encrypted data. Or, perhaps, he was putting a lot of weight on the phrase "properly implemented." Because if you had hung your trust on RSA, the security ... Access >>>
Premium Content for Free.
Beyond the Page: Cyberthreats
by Johannes B. Ullrich
This February 2014 Information Security magazine supplement takes a deeper look into cyberthreats and examines advanced threat techniques including watering hole attacks and sophisticated spear phishing.
The changing face of advanced malware detection
by David Strom, Contributor
It's a new year of advanced threats, malicious code and holes to plug, but security teams are fighting back with help from global services.
- Beyond the Page: Cyberthreats by Johannes B. Ullrich
Cyberthreats: Know thy enemy in 2014
by Johannes B. Ullrich
There's no place to hide as new cyberthreats and tried-and-true hacking techniques test security teams.
Tor networks: Stop employees from touring the deep Web
by Adam Rice
Are employees using Tor to view blocked Web sites, or mining Bitcoins on corporate resources? Sinister or not, it needs to stop.
- Cyberthreats: Know thy enemy in 2014 by Johannes B. Ullrich
New ways to navigate advanced security threats
by Kathleen Richards, features editor
One month into the new year and we have already faced landmark data breaches. The advanced threats will keep on coming in 2014.
New devices, new threats: How to evaluate the devices we love
by Kevin Johnson
The influx of iPad and Android tablets and smartphones after the holidays can really challenge network security in organizations that support BYOD.
Mobile security report: Data on devices
by Kathleen Richards
New survey shows the battle between corporate-issued devices versus personally owned smartphones and tablets is too close to call.
Fixing the math in the wake of Snowden's NSA surveillance reveal
by Robert Richardson, Editorial Director
Throwing a curve: Is there a potential weakening of security products and services courtesy of the NSA and RSA BSafe?
- New ways to navigate advanced security threats by Kathleen Richards, features editor
More Premium Content Accessible For Free
Application security policy after Heartbleed
Enterprises leverage open source software for the perceived quality of the code, but the Heartbleed flaw has made many question their use of ...
Devising a security strategy for the modern network
The network of today's enterprise is larger and more diverse than ever, which means there's more for hackers to attack. So as enterprises update ...
The big data challenge: What's in store for NoSQL security
In the rush to capitalize on big data, many companies forget that developing an ecosystem of structured and unstructured data means higher risk of ...