In the last 48 hours, age became a hot topic on Facebook, thanks to Microsoft How-Old.net free age-guessing online tool. It proves age is still a contentious topic, regardless gender, race and obviously age. A marvelous marketing gimmick! As it always happens, once a story caught fire, a few risk aversive or investigating minds start …
As 2015 approaches, it is time for new year resolutions and wishes. For security industry, we are busy preparing for another eventful year!! Design A Hack Proof Password Storage When preparing for our budget and project portfolios, it maybe useful to look at predictions from leading security vendors. Â Cyber security is an intelligence game. Can …
No Single Prediction Is Perfect, So I Look At Four Read More »
In one article, we see NetApp, Redhat and AWS. Cloud computing is now enabling mix & match of technologies. NTU subscribed to Amazon Web Services (AWS) to cope with unexpected demands
“It’s comforting to imagine that, in the end, the power of innovative technologies and business models will win out over status-quo thinking and entrenched interests, all for the public good.” From a security and risk management point of view, a central or using the author’s words “the powers that have traditionally controlled those transactions” provides …
Soon will come the software defined transaction (SDT) age. Read More »
Digital certificate is widely used and the Internet cannot work without it. However, PKI (the framework digital certificates based on) has lots of issues. Last year in ISO SC27 meeting at ENISA there was a special meeting on PKI. Many issues are only raised without a conclusion, same as most issues brought international meetings. How …
Microsoft tries to address PKI issues in IE11 (SmartScreen and SNDS) Read More »
Preparations for a blended IT environment Although the author discussed preparations for hybrid cloud, his points apply to most IT organisation now : This growth in the use of cloud services requires IT managers to re-evaluate their role. What role? Not only as a broker but builder. For most enterprise, IT manager will not build …
Around 18 months ago, a security researcher reported that he found a bug in VMDK descriptor that allows user to access all driver in a VMware hypervisor. Today VMware released another vulnerability “VMware ESXi and ESX unauthorized file access through vCenter Server and ESX, in their words “an unprivileged vCenter Server user with the privilege “Add …
VMware Virtual Machine file descriptors security Read More »
The arm race on cyber security makes protecting Internet resources harder and harder. In the past, DDoS was mostly on Layer 3 and Layer 4 but reports from various sources identified Layer 7 DDoS is the prevalent threat. The slide below from Radware explains the changes in new DDoS trend. While protection on network traffic …
Layer 7 DDoS Attack : A Web Architect Perspective Read More »
