 |
 |
 |
 |
 |
 |
 |
|
 |
 |
|
|
 |
 |
 |
NOVEMBER 2009 |
 |
 |
 |
FEATURES |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
 |
|  |
 |
 |
 |
 |
COLUMNS |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
 |
|  |
 |
 |
 |
|
 |
|
 |
 |
 |
 |
Read more from Information Security magazine in our back issues. |
 |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
|
 |
 |
 |
|
|
|
 |
|
|
 |
 2007 Features |
|
|
VIEW FEATURES FROM PREVIOUS YEARS:: |
2009
|
2008
|
2007
|
2006
|
2005
|
|
|
|
November 2007 |
 |

 |
Product review: Seven integrated endpoint security products
by Ed Skoudis & Matt Carpenter
Information Security magazine evaluates seven integrated endpoint security suites on their management capabilities, reporting, ability to detect and block malware, detecting and thwarting exploit attempts, and integration of the various desktop security capabilities in one package. |
|
 |
|
|
 |
|
|
 |
|
|
 |
|
September 2007 |
|
|
 |
 |

 |
What CISOs need to know about computer forensics
by Marcia Savage
With computer forensics needed for civil litigation, human resources investigations and criminal cases, organizations need to ensure they're prepared and evidence is preserved. This feature details steps involved in computer forensics, common missteps, and forensics resources. |
|
 |
 |

 |
Logical, physical security integration challenges
by Mark Diodati
Integrating physical and IT security can reap considerable benefits for an organization, including enhanced efficiency and compliance plus improved security. But convergence isn't easy. Challenges include bringing the physical and IT security teams together, combining heterogenous systems, and upgrading a patchwork of physical access systems. |
|
 |
 |

 |
Consolidation's impact on best-of-breed security
by Michael S. Mimoso
Standalone security vendors are attractive targets for large infrastructure players such as EMC. This feature looks at the consolidation in the security market and the potential for best-of-breed security to eventually disolve into a mashup of suites and services by big vendors like EMC, IBM, Microsoft, and HP. |
|
 |
|
July 2007 |
|
|
 |
 |

 |
Securing Extranets
by Paul Korzeniowski
Is perimeter security viable with Swiss cheese networks? |
|
 |
|
|
 |
|
|
 |
|
June 2007 |
|
|
 |
 |

 |
Product review: Unified threat management (UTM) devices
Unified threat management devices consolidate several network security functions into one product. This article evalutes six UTM appliances; each had to act as a firewall and virtual private network and provide antivirus, Web content filtering, intrusion prevention and antispam protection. |
|
 |
 |

 |
SIMs maturing and suitable for mid-market
Security information management systems (SIMs) tools have expanded with more capabilities such as active threat response. The broadening of the technology will provide security managers with a sharper view of their overall security posture. |
|
 |
|
|
 |
|
May 2007 |
 |

 |
Intellectual property protection do's and don'ts
by Russell L. Jones & Rena Mears
Theft of intellectual property is a growing problem but many companies are not prepared to deal with this security threat. Learn about the risk involved with trade secrets, why companies are failing to protect intellectual property and tips for data protection, including risk assessment, encryption, and corporate governance. |
|
 |
|
|
 |
 |

 |
Are you putting information at risk by using contractors?
by Paul Rohmeyer
Contractors can become the source of a security breach. This feature looks at the risk management steps, including access control and policies, that organizations should take when hiring contractors. A sidebar examines how a health care company uses NAC to control contractor access. |
|
 |
 |

 |
Role-based access controls
by Shon Harris
Identity management is a critical security challenge, but without viable standards for access control, your best efforts may be just a drop in the bucket. |
|
 |
|
April 2007 |
|
|
 |
|
|
 |
|
|
 |
|
|
 |
|
|
 |
|
|
 |
|
|
 |
|
|
 |
 |

 |
Messaging
2007 Readers' Choice Awards Email, IM and VoIP secuirty |
|
 |
 |

 |
Network Firewalls
2007 Readers' Choice Awards Network firewall appliances and software |
|
 |
|
|
 |
|
|
 |
|
|
 |
 |

 |
UTM
2007 Readers' Choice Awards Unified threat management products |
|
 |
|
|
 |
 |

 |
Wireless
2007 Readers' Choice Awards Wireless security products |
|
 |
|
|
 |
 |

 |
Prospective Buyers Want Answers
by Alan Paller
SANS WhatWorks The SANS Institute's WhatWorks program identifies three critical areas of concern for security managers. |
|
 |
|
March 2007 |
 |

 |
Product review: Six removable device control security products
by Sandra Kay Miller
Six removable device control security products that provide centrally managed granular control over ports, interfaces and storage devices are reviewed. This review evaluates: DeviceLock 6.0 from SmartLine, Sanctuary Device Con-trol 4.0 from SecureWave, Endpoint Access Manager 3.0 from ControlGuard, Device-Wall 4.5 from Centennial Software, Safend Protector 3.1 from Safend and Protect Mobile from Workshare. |
|
 |
|
|
 |
|
|
 |
|
|
 |
|
February 2007 |
 |

 |
Going Global
by Jody R. Westby
Organizations sending data abroad must be prepared to comply with a slew of privacy and security regulations. |
|
 |
 |

 |
Encrypt It
by W. Curtis Preston
Unencrypted data at rest is data at peril. |
|
 |
|
|
 |
 |

 |
IPS by the Numbers
by Joel Snyder
Choosing the right intrusion prevention technologies and products is a complex task, but following these six steps will make it simpler. |
|
 |
|
January 2007 |
 |

 |
Who's There?
by David Strom
Enterprises have a pressing need for endpoint security, but choosing a system that screens PCs before allowing them network access requires careful consideration. |
|
 |
 |

 |
Virtual Threats
by Dennis Fisher
Virtual machines save you money in the data center, but can you ignore their security implications any longer? |
|
 |
 |

 |
Mixed Signals
by Mark Baard
RFID gives businesses-and bad guys-an easy way to track and change information. |
|
 |
|
|
 |
|
 |