 |
|
|
|
|
| 1. |
Michael Cobb, Application and Platform Security |
| Michael is a contributor to SearchSecurity.com, and he answers your questions about application and platform security. |
| URL: |
|
| 2. |
Testing a security patch |
| Learn tool and techniques you can use to test a security patch prior to deployment. |
| URL: |
|
| 3. |
Security verification tool for Unix OS |
| Expert advice on where to find tools that can help you harden your operating systems and applications. |
| URL: |
|
| 4. |
Managing patch installations |
| Learn how using batch file utilities can help control Microsoft patch installations. |
| URL: |
|
| 5. |
Malware signature updates |
| In this Ask the Expert Q&A our platform security expert discusses how the malware detection and virus detection processes differ. Also learn what some are doing to prevent spyware, rootkits, trojans and other types of malware from running on their network. |
| URL: |
|
| 6. |
Patching the Windows 2000 server |
| In this Ask the Expert Q&A, our platform security expert explains how to apply patches to the Windows 2000 server. He also provides a variety of resources that will help identify uninstalled patches and updates. |
| URL: |
|
| 7. |
How to prevent drive corruption in the event of power failure |
| In this Ask the Expert Q&A, learn how a PDA device stores data and programs. Also learn how Compact Flash cards and hard drives differ and what some are doing to prevent drive corruption in the event of power failure. |
| URL: |
|
| 8. |
Encryption and password protection methods for removable storage devices |
| In this Ask the Expert Q&A our platform security expert explains how to use encryption and passwords to secure removable storage devices. |
| URL: |
|
| 9. |
How to implement a simulator for FTP and TFTP protocols |
| In this Ask the Expert Q&A, our platform security expert discusses the advantages of using the Simple Network Management Protocol. He also explains where to find a simulator for FTP and TFTP protocols. |
| URL: |
|
| 10. |
The pros and cons of reformatting a hard drive |
| In this Ask the Expert Q&A, our platform security expert discusses the pros and cons of reformatting a hard drive after an attack. |
| URL: |
|
| 11. |
Patch deployment timeline |
| In this Ask the Expert Q&A, our platform security expert discusses how long a mid- to large company should expect to wait before they are able to deploy a patch. |
| URL: |
|
| 12. |
Handling permissions in Active Directory |
| In this Ask the Expert Q&A, our platform security expert discusses how Active Directory permissions are controlled specified access control lists and what tools are available to users who seek to view, modify or remove existing delegations. |
| URL: |
|
| 13. |
How to deploy Microsoft patches without Active Directory or SMS |
| Learn how deploy Microsoft patches to 100+ desktops if you do not have Active Directory or SMS |
| URL: |
|
| 14. |
Proxy server functions |
| In this Ask the Expert Q&A, our platform security expert details how proxy servers work and determines whether they protect personal and sensitive information safe from hacker exploits. |
| URL: |
|
| 15. |
The pros and cons of FTP over SSL |
| Compare and contrast the pros and cons of having hosts send PGP-encrypted files to an existing FTP site against building an ad hoc FTP server using SSL, in this Ask the Expert Q&A |
| URL: |
|
| 16. |
How FTPS differs from TLS |
| Take an indepth look at FTP over SSL, how it works and how it differs from TLS and other protocols |
| URL: |
|
| 17. |
How vulnerability management relates to critical applications |
| Discover how far vulnerability management can extend into critical applications such as Oracle, SAP or Peoplesoft, in the application security Ask the Expert Q&A. |
| URL: |
|
| 18. |
Patch management techniques |
| In this Ask the Expert Q&A, our platform security expert provides techniques to use when testing, installing and deploying a patch to your network. |
| URL: |
|
| 19. |
Mapping Windows client certificates |
| In this Ask the Expert Q&A, Michael Cobb explains how to properly map Windows client certificates to access a Web site. |
| URL: |
|
| 20. |
How to protect against port scans |
| A port scan is a popular hacking tool that allows attackers to gather information about how your network operates. Learn how to detect and prevent a port scan in this platform security Ask the Expert Q&A. |
| URL: |
|
| 21. |
Are there any patch management products that track the patching process? |
| Before you dip into your IT budget to solve your patching problems, read this Q&A. Our platform security expert examines why security pros should consider using available freeware products to track and manage their patching process. |
| URL: |
|
| 22. |
The pros and cons of data wiping |
| Weigh the pros and cons of software disk-wiping and determine if it can protect against data compromise in this Platform Security Ask the Expert Q&A |
| URL: |
|
| 23. |
What tools are available to verify a patch's validity? |
| Ever wonder about the source and integrity of a downloaded patch? In our expert Q&A, platform security expert, Michael Cobb, tells users about various management programs that can verify your patches. |
| URL: |
|
| 24. |
For asset management systems, is there a tool more comprehensive than Nmap? |
| If you're looking for a network discovery tool, consider Nmap. There are other options for your asset management system, however, and Michael Cobb reviews them in this expert Q&A. |
| URL: |
|
| 25. |
How can rootkit hypervisors affect operating system security? |
| What can rookit hypervisors do to your operating system? "Whatever their creators want!" says application security expert Michael Cobb. In this SearchSecurity.com Q&A, Cobb explains how rootkit hypervisors could defeat the security defenses of a virtual machine. |
| URL: |
|
| 26. |
Will two different operating systems cause administrative problems? |
| Using two different operating systems can often boost a company's security, but there are practical limitations to the enterprise practice. In this expert Q&A, Michael Cobb reveals how separate platforms can lead to deployment issues and higher development costs. |
| URL: |
|
| 27. |
Should every flaw in a vulnerability scanner report be addressed? |
| So you have your vulnerability report -- Now what? In this SearchSecurity.com Q&A, platform security expert Michael Cobb explains which flaws to tackle first. |
| URL: |
|
| 28. |
Should full disk encryption be used to prevent data loss? |
| According to a Ponemon Institute survey done in August 2006, eighty-one percent of companies reported the loss of one or more laptops during a 12 month period. In this SearchSecurity.com Q&A, platform security Michael Cobb explains whether that means it's time for full-disk encryption. |
| URL: |
|
| 29. |
How to enforce a data destruction policy |
| Because of the Sarbanes-Oxley Act, intentional document destruction is now a process that must be carefully monitored. But a "document" takes on many forms, from spreadsheets and emails to instant messages and Word files. In this expert Q&A, Michael Cobb clears up some of the confusion and reveals which best practices can boost an enterprise's data destruction policy. |
| URL: |
|
| 30. |
Is Windows Vista SP1 necessary before making the upgrade? |
| Microsoft informed its corporate customers that it plans to release Windows Vista SP1 in the second half of 2007, but should you wait for it? In this SearchSecurity.com Q&A, platform security expert Michael Cobb explains why it might be a bad idea to jump on the Vista bandwagon so soon. |
| URL: |
|
| 31. |
Which Unix programs can encrypt database files? |
| Options may seem slim for Unix users looking to encrypt their database files. In this expert Q&A, platform security expert Michael Cobb explains whether encrypting and decrypting an entire production database is worth it to begin with. |
| URL: |
|
| 32. |
What should be done with a RAID-5 array's failed drives? |
| Even one failed drive in a RAID-5 array can present an enterprise with serious data protection concerns. In this SearchSecurity.com Q&A, expert Michael Cobb explains which policies can protect and recover RAID-5 data. |
| URL: |
|
| 33. |
Should fuzzing be part of the secure software development process? |
| Fuzzing, a common software-testing method, should not be your only vulnerability assessment technique. In this SearchSecurity.com Q&A, Michael Cobb reviews how passing a fuzz test does not always mean that a program is bug-free. |
| URL: |
|
| 34. |
How to select a penetration tester |
| Penetration testing tools can simulate attacks and help organizations get an idea of their security vulnerabilities. In this SearchSecurity.com Q&A, platform security expert Michael Cobb explains what you should be getting out of your penetration tester. |
| URL: |
|
| 35. |
Can database extrusion products effectively prevent data loss? |
| In this SearchSecurity.com Q&A, security expert Michael Cobb explains how well database extrusion products can protect an organization's stored confidential information. |
| URL: |
|
| 36. |
How secure is the Windows registry? |
| In this SearchSecurity.com Q&A, platform security expert Michael Cobb explains the weaknesses of the Windows registry and explores other OS alternatives. |
| URL: |
|
| 37. |
Can dynamic and static verification secure a platform? |
| The best software testing approach is to use a combination of static and dynamic verification tools that continually check for technical and logical vulnerabilities during the development cycle. Expert Michael Cobb examines each testing procedure in turn. |
| URL: |
|
| 38. |
What are the best laptop data encryption options? |
| When it comes to protecting laptops and hard drives, there are plenty of choices. In this expert Q&A, Michael Cobb lays out some data protection options. And they're not just software-based, either. |
| URL: |
|
| 39. |
Examining DoD-level secure erasure guidelines |
| In this expert Q&A, platform security expert Michael Cobb explains whether DOD-level secure erasure is a doable (and necessary) procedure. |
| URL: |
|
| 40. |
What is an ideal patch management process for small businesses? |
| Patch management and testing can be a time-consuming and resource-hungry task. In this expert response, Michael Cobb demonstrates how to streamline the process. |
| URL: |
|
| 41. |
Should confidential data be indexed or used as the index key? |
| A recent attack uses a series of insert operations to find weaknesses in the database's indexing algorithm. Michael Cobb explains the nature of the threat and what it means for customer data. |
| URL: |
|
| 42. |
Can confidential data be accessed once it is deleted for free space? |
| Depending on how full a drive is, confidential data can survive indefinitely -- whether it is deleted or not. In this expert response, Michael Cobb explains whether the files live and how they can be accessed. |
| URL: |
|
| 43. |
What security issues can arise from unsynchronized system clocks? |
| Network administrators don't always pay enough attention to the issues of system clock accuracy and time synchronization. Michael Cobb explains why that can lead to security problems. |
| URL: |
|
| 44. |
Will one failed drive corrupt the rest of a RAID-5 array? |
| In this expert Q&A, Michael Cobb explains when it is appropriate to keep a RAID-5 array's failed drive online. |
| URL: |
|
| 45. |
How to protect DNS servers |
| The DNS database is the world's largest distributed database, but unfortunately, DNS was not designed with security in mind. Application security expert Michael Cobb explains how to keep a DNS server from being hijacked. |
| URL: |
|
| 46. |
How should the ipseccmd.exe tool be used in Windows Vista? |
| Ipseccmd is a command-line tool for displaying and managing IPsec policy and filtering rules. Expert Michael Cobb explains how to get the scripting utility to work with Vista. |
| URL: |
|
| 47. |
Will a platform-as-a-service (PaaS) environment put data at risk? |
| Platform-as-a-service is the next step in the evolution of Web services. But is it secure? Security expert Michael Cobb sets the record straight? |
| URL: |
|
| 48. |
Should disks be encrypted at the hardware level? |
| Disks that automatically encrypt data as they write -- and decrypt when they read -- are appealing for a number of reasons. Platform security expert Michael Cobb explains why. |
| URL: |
|
| 49. |
Is Triple DES a more secure encryption scheme than DUKPT? |
| Both DES and TDES use a symmetric key, but Michael Cobb explains their separate and distinct roles in protecting financial transactions. |
| URL: |
|
| 50. |
Does FTPS encrypt data packets at the hardware or software level? |
| If you need to implement FTPS, which delivers a lot of data securely to a server, it might be worth investigating partial or complete hardware acceleration of the crypto-processing. Platform security expert Michael Cobb explains why. |
| URL: |
|
| 51. |
Is desktop virtualization a realistic enterprise option? |
| Today the endless release of upgrades, patches and other updates has made maintaining even a handful of desktop PCs a time-consuming task. Platform security expert Michael Cobb explains why desktop virtualization may be a way to reduce the complexity. |
| URL: |
|
| 52. |
Which operating system can best secure an FTP site? |
| In this expert Q&A, platform security expert Michael Cobb explains how a secure FTP protocol can improve websites and Web services. |
| URL: |
|
| 53. |
Should whole disk encryption tools be used with data backup software? |
| Disk encryption and disk backup play two distinct roles when it comes to enterprise network security. Michael Cobb explains how both of the important tools can be used together effectively. |
| URL: |
|
| 54. |
Are open recursive DNS servers inherently insecure? |
| Recursion was meant to make the Internet run better, but expert Michael Cobb explains why the willingness of malicious users to abuse open recursive DNS servers has made it part of numerous ongoing threats. |
| URL: |
|
| 55. |
Is attack code valuable for vulnerabilities or just a publicity stunt? |
| If a security company has developed attack code for a particular vulnerability, there will always be critics that cry "PR stunt." Expert Michael Cobb explains why the vulnerabilities should always be taken seriously. |
| URL: |
|
| 56. |
Is a Master Boot Record (MBR) rootkit completely invisible to the OS? |
| Whether or not we see widespread attacks that use MBR rootkits will depend upon two factors. Platform security expert Michael Cobb explains them both. |
| URL: |
|
| 57. |
How can 'DRAM remanence' compromise encryption keys? |
| The risks from DRAM remanence have been mentioned before, but seldom in the context of disk encryption keys. Learn about a new threat researched by Princeton University and what the attack means for encryption. |
| URL: |
|
| 58. |
Should users have a removable boot drive for online banking? |
| Accessing your bank account through a browser -- one that has been loaded from a non-writable source and is known to be free of malicious code -- is safer than accessing your account from a computer booted from the same hard drive. Find out why. |
| URL: |
|
| 59. |
What are the pros and cons of zero-knowledge penetration tests? |
| A penetration tester with no previous knowledge of the site being tested may be able to give some insight unavailable to other forms of penetration testing, but there are pros and cons. Expert Michael Cobb weighs in. |
| URL: |
|
| 60. |
The unexpected costs of server virtualization? |
| Formerly dominated by a single vendor, VMWare Corp., the field of virtualization security now has more options. But what's the most cost-efficient way to go virtual? Platform security expert Michael Cobb gives advice. |
| URL: |
|
| 61. |
Can software tools automate the server hardening process? |
| Michael Cobb explores the Windows Server 2003 Hardening Guide and how you can tighten the security on your servers. |
| URL: |
|
| 62. |
Can DNS be used to support encryption? |
| Expert Michael Cobb says it's more likely that encryption will be used to support DNS than the other way around. |
| URL: |
|
| 63. |
Should open source disk-encryption software be used? |
| When it comes to IT security, Michael Cobb recommends encryption devices or software that provide the most effective product for the threat being mitigated. Sound simple? See if that advice includes open-source tools. |
| URL: |
|
| 64. |
Should static analysis be a part of the software development process? |
| When the cost of addressing security issues increases as the software design lifecycle proceeds, see why expert Michael Cobb says that using static analysis early on can benefit your bottom line. |
| URL: |
|
| 65. |
What is the best operating system for an FTP server implementation? |
| When it comes to recommending an operating system for a task such as hosting an FTP server, expert Michael Cobb says it depends on what in-house expertise you have. |
| URL: |
|
| 66. |
Are encrypted, self-deleting USB storage drives worth the investment? |
| Expert Michael Cobb explains why some high-end, encrypted, self-deleting USB drives are worth looking into and may be a good investment. |
| URL: |
|
| 67. |
Can read/write access policies be put on a SAN server? |
| A SAN usually contains an organization's most critical data, centralized in one convenient location. Platform security expert Michael Cobb explains how to be protect that information. |
| URL: |
|
| 68. |
Is it more secure to have a mainframe or a collection of servers? |
| The general public may think that mainframe computing is a thing of the past, but expert Michael Cobb reviews why the mainframe is still the cornerstone most large IT projects. |
| URL: |
|
| 69. |
What are the key provisions of Massachusetts Executive Order 412? |
| Agencies must now give their full cooperation to the Massachusetts Information Technology Division (ITD), which has been given more control over IT spending. Michael Cobb reviews Massachusetts' Executive Order 412 |
| URL: |
|
| 70. |
How to harden Linux operating systems |
| Specific advice on hardening a server depends to some extent on its intended role, says expert Michael Cobb in this SearchSecurity.com Q&A. |
| URL: |
|
| 71. |
What are the security risks of Windows Vista RSS functionality? |
| The RSS support in Windows Vista exposes feed handling and management to other Windows applications. However, any technology that allows data to be shared across applications carries risks, says expert Michael Cobb. |
| URL: |
|
| 72. |
A simple substitution cipher vs. one-time pad software |
| Both a simple subsitution cipher and one-time pad software have data encryption benefits despite their differences. |
| URL: |
|
| 73. |
When should a virtual patch be used? |
| Learn how virtual patches can help administrators review, test and schedule official patch updates and find out about the benefits a virtual patch provides, such as protection against identified vulnerabilities. |
| URL: |
|
| 74. |
How secure is 'Platform as a Service (PaaS)?' |
| There's no doubt that companies will want to leverage cloud computing and platform as a service, but expert Michael Cobb explains why enterprises should proceed with caution. |
| URL: |
|
| 75. |
Steganography techniques: MD5 implementation or RC4 encryption? |
| Although it is difficult to decipher encrypted data, steganography itself is relatively easy to detect. Expert Michael Cobb reviews which encryption algorithm is best to use when hiding important data. |
| URL: |
|
| 76. |
Security comparison: Mac OS X vs. Windows |
| The Mac OS X vs. Windows debate will likely never be resolved, but that won't stop expert Michael Cobb from giving it his best shot. Our platform security expert explains how each operating system combats malware. |
| URL: |
|
| 77. |
How to test IPv6 infrastructures |
| In this expert response, Michael Cobb explains why you should definitely test your IPv6 infrastructure sometime this year. |
| URL: |
|
| 78. |
Should Windows Mobile updates come from Microsoft? |
| As mobile phones become more like mini PCs, they need similar add-on security tools and patch processes to keep them safe. Michael Cobb reviews how to manage Windows Mobile updates. |
| URL: |
|
| 79. |
What are the export limitations for AES data encryption? |
| Although AES is free for any use public or private, commercial or non-commercial programs that provide encryption capabilities are subject to U.S. export controls. Expert Michael Cobb reviews the limitations. |
| URL: |
|
| 80. |
What are new and commonly used public-key cryptography algorithms? |
| Expert Michael Cobb breaks down a variety of encryption algorithms and reviews the use cases for several types of cryptography. |
| URL: |
|
| 81. |
Should management processes change based on a patch release schedule? |
| Expert Michael Cobb explains why planned patch release schedules, though helpful, may alter they way you handle the deployment of your own updates. |
| URL: |
|
| 82. |
Does an EULA make it truly illegal to decompile software? |
| Michael Cobb explores a legal minefield: the legality of software decompilation. |
| URL: |
|
| 83. |
Why should we place data files on a separate partition than the OS? |
| You may have always been taught to install applications on a different partition than the OS, but do you actually know why? |
| URL: |
|
| 84. |
Should businesses delay Windows Vista adoption and just buy Windows 7? |
| In many ways, the security features in Windows 7 are the result of Vista users' feedback and experiences. But should enterprises adopt the OS right away? |
| URL: |
|
| 85. |
Should developers create libraries of common cryptographic algorithms? |
| In this expert response, Michael Cobb explains why developers don't need to create their own cryptolibraries. |
| URL: |
|
| 86. |
How to secure USB ports on Windows machines |
| A readers asks expert Michael Cobb about which product can best secure USB ports. |
| URL: |
|
| 87. |
What is an encryption collision? |
| Michael Cobb reviews how encryption collision attacks on cryptographic hash functions could compromise the security of all kinds of digital systems. |
| URL: |
|
| 88. |
What is the best database patch management process? |
| Michael Cobb reviews how to handle database patches in the enterprise. |
| URL: |
|
