Security, Firewalls, Intrusion Prevention, SSL: News, Experts & Tips

Security Magazine

Archives: November 2011

VIEW OTHER ISSUES FROM 2011:

FEB | MAR | APR | MAY | JUN | JUL

SEP | OCT | NOV | DEC

Features
- PDF download: Information Security magazine November 2011
  
  This issue of Information Security looks at the security provided by virtual desktop infrastructure, how cybercriminals are increasingly targeting SMBs, and factors that can skew risk analysis.
- PCI council developing point-to-point encryption certification program
  
  PCI Security Standards Council plans to release a list of certified components in April.
- Overcoming obstacles in the security risk assessment process
  
  An effective risk assessment process is essential, but many factors can skew the process and get in the way of security.
- VDI security supports active protection strategies
  
  by Eric Ogren, Contributor
  
  ISM November 2011 cover story: Eric Ogren on how virtual desktop infrastructure enhances compliance, data protection and malware protection.
- Cybersecurity threats target lack of SMB security
  
  Cybercriminals are zeroing in on small and midsize businesses with fewer security resources.
Columns
- Marcus Ranum chat: Information security monitoring
  
  by Marcus J. Ranum, Contributor
  
  Security expert and Information Security magazine columnist Marcus Ranum talks to Richard Bejtlich, CSO and vice president, Mandiant Computer Incident Response Team (MCIRT) at security firm Mandiant.
- The lack of computer security: We’re all responsible
  
  We all have an explanation for weak security, but everyone needs to do their part to improve it.
- Time for discourse on China computer hacking
  
  by Michael S. Mimoso, Editorial Director
  
  China is being accused of hacking corporate, government and military networks in the U.S. for economic gain. Policy makers need to be versed in cybersecurity and figure out how to respond.

Subscribe to Information Security

Cloud Security
- Cloud DLP: Understanding how DLP works in virtual, cloud environments
  
  Applying DLP technology to virtual machines can enable cloud computing with enhanced security and compliance.
- Leveraging Microsoft Azure security features for PaaS security
  
  Organizations can boost PaaS security late in the game by implementing these stopgap measures.
- Quiz: Understanding cloud-specific security technologies
  
  Think you understand cloud-specific security technologies as well as expert Joseph Granneman does? Test your knowledge with this quiz.
Security Channel
- Biometric authentication methods: Comparing smartphone biometrics
  
  Biometric authentication helps ensure only authorized smartphone users can access a network. David Jacobs weighs the pros and cons of three methods.
- F5 Vault program embraces incentives for F5 firewall, security sales
  
  The Vault partner program uses incentives to increase visibility for F5 firewalls and its architecture bundle.
- Using DMARC to improve DKIM and SPF email antispam effectiveness
  
  DMARC aids the DKIM and SPF protocols that help keep spam out and let legitimate emails in. David Jacobs explains how.
searchMidmarketSecurity
- Windows Phone 7 security: Assessing WP7 security features
  
  Windows Phone 7 security features are proving to be a mixed bag. Sam Cattle assesses the enterprise security pros and cons of the latest Windows mobile platform.
- Choosing the best security certifications for your career
  
  Whether starting your career or planning your next step as an IT security professional, this tip will guide you toward the best certifications for your interests and experience.
- Midmarket security tutorials
  
  SearchMidmarketSecurity.com’s tutorials offer IT professionals in-depth lessons and technical advice on the hottest topics in the midmarket IT security industry. Through our tutorials we seek to provide site members with the foundational knowledge needed to deal with the increasingly challenging job of keeping their organizations secure.
searchFinancialSecurity
- Microsoft attempts legal action to disrupt some Zeus botnets
  
  Legal and technical actions could disrupt some Zeus botnet operations by seizing command-and-control servers in Pennsylvania and Illinois.
- More than hype: Security big data helps bank to boost security program
  
  At RSA Conference 2012, Zions Bancorporation detailed how it harvested security big data using a Hadoop-based security data warehouse.
- Web application threats: What you really need to know
  
  In this special presentation, Mike Rothman details today's top Web application threats and pragmatic methods to integrate security into the Web application development process.
Security UK
- Prep and test your Olympics 2012 security contingency plans
  
  To maintain information security during the 2012 Olympics, security and IT contingency plans must be tested in several key areas.
- File upload security best practices: Block a malicious file upload
  
  Do your Web app users upload files to your servers? Find out the dangers of malicious file uploads and learn six steps to stop file-upload attacks.
- MDM, security vendors scramble to address BYOD security issues
  
  Organisations are looking beyond NAC and MDM to resolve BYOD security issues; MDM, security and hybrid vendors are responding with new products.
searchSecurityAU
- Leveraging Microsoft Azure security features for PaaS security
  
  Organisations can boost PaaS security late in the game by implementing these stopgap measures.
- With mobile payments, security teams must move quickly
  
  As employees make payments on their mobile devices, the security team must act quickly to ensure corporate assets remain secure.
- PCI virtualization compliance still a challenge
  
  No black and white when it comes to PCI compliance in virtualized environments, experts say.
Information Security
- Google Chrome gets security overhaul, patches 13 bugs
  
  Software giant updates Google Chrome stable channel to v19.0.1084.52 in a security only update.
- Android Malware Genome Project aims to nurture mobile security research
  
  Project will share data on malware targeting the Android platform. It has collected 1,200 Android malware samples.
- CEH certification gains credence in IT security domain
  
  CEH certification is much sought after in the IT security domain today. Here’s how you can obtain CEH certification and why you should attempt do so.

Latest Headlines

Featured

Topics

Hot Topics

Advice & Tutorials

Technology Dictionary

Tips

Answers

Ask a Question

Research Library

Product Demos

Resource Centers

Blogs

Security Magazine

Archives: November 2011

Features

Columns

More from Related TechTarget Sites