Things that are true are often heard too much and we become “immune” to them. Other things are true but not heard often enough. This is especially true at Info Security conferences. My list (add yours, please): Heard too often Not heard often enough You need to have an information security policy Control testing should … Continue reading
Author Archives: David Sheidlower
Encryption & efficiency
A link about encryption from Bruce Schneier’s latest Cryptogram. A useful scheme with current business application. What is noteworthy is that the article mentions that the solution is not yet efficient for business use. But no metrics are provided. It is common that security is resisted with phrases like “inefficient”, “negative user impact” and ” … Continue reading
Identity Management in Health Care
Is all risk worth insuring?
Mark Rasch reminds us of the answer: risk is worth insuring when you and the insurer agree on what is being covered. http://storefrontbacktalk.com/securityfraud/the-legal-perils-of-cyber-insurance-for-retailers/ Continue reading
Visibility v. Privacy
Cousin Jesse quoted in this recent article about Facebook settings. Speaks for itself: http://mbcalyn.com/2012/06/27/on-facebook-the-semantics-of-visibility-vs-privacy-nytimes-com/ Continue reading
Got your Cyber Security Right Here
keep reading Continue reading
{Cyber Security} 