参加主题Security的讨论
Security


佩吉特说,他不排除以软件服务的方式提供未来的Core产品的可能性。他说,一些事情都列入了议事日程……
赛门铁克推出Symantec Mobile Security Suite 5.0,为用户的Windows Mobile智能手机和PDA提供与计算机和便携式电脑同等级别的安全和数据保护功能……
An Introduction to Intrusion Detection and Assessment for System and Network Security Management Prepared by Rebecca Bace from Infidel, Inc. for ICSA, Inc. Systems and networks are subject to electronic attacks. The increasingly frequent attacks on Internetvisible systems are attempts to breach information security requirements for protection of data. Vulnerability-assessment tools check systems and networks for system problems and configuration errors that represent security vulnerabilities. Intrusion-detection systems collect information from a variety of vantage points within computer syste
The old cliche the ""network is the system"" becomes a reality with Microsoft?s Windows 2000 Distributed Services. A single login provides access to applications and resources spread throughout your Windows 2000 network. At first, this might appear to be a security management nightmare, but if Windows 2000 is properly deployed it provides a centralized security platform with many enhanced security features. Kerberos and the Public Key Infrastructure provide networking security opportunities The Microsoft Management Console (MMC) and enhancements to the Group Policy simplify management while p
We define the formal semantics of expressive security-property language. The language distinguishes safe from unsafe programs and can be enforced systematically using proof-carrying code. The soundness of an enforcement algorithm is shown with respect to the language semantics.
After September 11th, we're all thinking about how to keep safe what we care about. For organizations and individuals alike, that means finding ways to secure information and network resources. But for systems and networks linked to the Internet, absolute security is pretty much impossible....
As an open, unbounded network, the Internet - where organizations and individuals alike must interact to do business, communicate with loved ones and educate and entertain themselves - is a wild, untamed frontier....
Data reduction is a foundation technology most effectively used in agents at the device or server level. Event correlation can be considered more holistic, more of a synthesis tool, taking a much wider view of enterprise network security. Event correlation has graduated degrees of complexity that can be applied to a corporation?s infrastructure. The objective is to apply event correlation to the organization?s security policies in order to meet enterprise security goals. In its most basic form, event correlation provides the security administrator with the ability to take two or more disparat
Interest and knowledge about computer and network security is growing along with the need for it. This interest is, no doubt, due to the continued expansion of the Internet and the increase in the number of businesses that are migrating their sales and information channels to the Internet. The growth in the use of networked computers in business, especially for e-mail, has also fueled this interest. Many people are also presented with the post-mortems of security breaches in high-profile companies in the nightly news and are given the impression that some bastion of defense had failed to preve
Jerboa helps companies securely open their networks to partners, customers, and remote employees in order to increase profits and even decrease costs. Jerboa?s expertise has guided hundreds of executives in creating and implementing powerful security policies by developing systems to monitor and improve security. Let us begin by reviewing some basic definitions. Holism is the ?theory that the universe and especially living nature is correctly seen in terms of interacting wholes that are more than the mere sum of elementary particles.?2 When we look closely at this definition, we note that the
Here we look at the threats and vulnerabilities lurking around communication systems and the information security technologies that we can use to combat them.
Security has become one of the primary concerns when an organization connects its private network to the Internet. Regardless of the business, an increasing number of users on private networks are demanding access to Internet services such as the World Wide Web (WWW), Internet mail, Telnet, and File Transfer Protocol (FTP). In addition, corporations want to offer WWW home pages and FTP servers for public access on the Internet. Network administrators have increasing concerns about the security of their networks when they expose their organization?s private data and networking infrastructure to
There used to be a time when the majority of computer operators and people alike maintained one user ID and password. With the introduction of platforms such as Microsoft Windows, and with the continual lowering of hardware costs capable of hosting Unix systems. This is no longer the case. Many of the applications hosted by high end systems like Mainframes have been distributed amongst multiple client server systems. If this didn?t cause organizations enough foods for thought, lets add e-commerce to the equation. With each different OS, Application and security database introduced comes its ow
F-Secure Corporation is a leading provider of centrally managed security for today's mobile, wireless enterprise. The company offers a full range of award-winning, integrated anti-virus, file encryption, distributed firewall and VPN solutions for workstations, servers, gateways and mobile devices. F-Secure products are uniquely suited for delivery of Security as a Service TM which provides invisible, reliable, always-on, and up-to-date security for the most widely distributed user base. Whether provided by corporate IT or delivered by service providers, F-Secure solutions extend policy-based
When intruders attack any part of a computer network, it?s likely that telltale signs are left behind, written as events to the logs of the computers on the front line of the attack. What you do with this information is crucial. This white paper discusses this topic in detail, and introduces sophisticated products at the leading edge of security event correlation.
Current methods do not cross-correlate among applications, nor do they take any actions without some outside intervention. In short, they produce mountains of data with no place to go, unless there is a lot of interpretation from a prohibitively large security support staff. To effectively meet today?s infrastructure demands, however, enterprises really need a hierarchical, or active security management model. Because of its hierarchical structure, SystemWatch can be scaled upward to accommodate enterprise growth,network expansion and security products.
After September 11th, we're all thinking about how to keep safe what we care about. For organizations and individuals alike, that means finding ways to secure information and network resources. But for systems and networks linked to the Internet, absolute security is pretty much impossible....
As an open, unbounded network, the Internet - where organizations and individuals alike must interact to do business, communicate with loved ones and educate and entertain themselves - is a wild, untamed frontier....
Data reduction is a foundation technology most effectively used in agents at the device or server level. Event correlation can be considered more holistic, more of a synthesis tool, taking a much wider view of enterprise network security. Event correlation has graduated degrees of complexity that can be applied to a corporation?s infrastructure. The objective is to apply event correlation to the organization?s security policies in order to meet enterprise security goals. In its most basic form, event correlation provides the security administrator with the ability to take two or more disparat
Interest and knowledge about computer and network security is growing along with the need for it. This interest is, no doubt, due to the continued expansion of the Internet and the increase in the number of businesses that are migrating their sales and information channels to the Internet. The growth in the use of networked computers in business, especially for e-mail, has also fueled this interest. Many people are also presented with the post-mortems of security breaches in high-profile companies in the nightly news and are given the impression that some bastion of defense had failed to preve
Jerboa helps companies securely open their networks to partners, customers, and remote employees in order to increase profits and even decrease costs. Jerboa?s expertise has guided hundreds of executives in creating and implementing powerful security policies by developing systems to monitor and improve security. Let us begin by reviewing some basic definitions. Holism is the ?theory that the universe and especially living nature is correctly seen in terms of interacting wholes that are more than the mere sum of elementary particles.?2 When we look closely at this definition, we note that the
Security has become one of the primary concerns when an organization connects its private network to the Internet. Regardless of the business, an increasing number of users on private networks are demanding access to Internet services such as the World Wide Web (WWW), Internet mail, Telnet, and File Transfer Protocol (FTP). In addition, corporations want to offer WWW home pages and FTP servers for public access on the Internet. Network administrators have increasing concerns about the security of their networks when they expose their organization?s private data and networking infrastructure to
This paper explores how ISA Server Enterprise Edition is designed to address the needs of today's Internet-enabled businesses. It shows how ISA Server provides your business with a multi-layered enterprise firewall that protects network resources from viruses, hackers, and unauthorized access. Read also how Web cache enables organizations to save network bandwidth and provide faster Web access for users by serving objects locally, rather than over a congested Internet
The benefits of connecting to the Internet are clear. This paper discusses the risks you face when you connect to the Internet, describes the types of attacks that can occur, and offers an overview of firewall technology, which can protect your network from hackers. Specifically, the paper discusses the implementation of a firewall and what you should consider in choosing the type of
WAP has been designed to work within the constraints that mobile wireless devices have to operate in. These devices have limited display capabilities and simple user interfaces. They have limited processing power, battery life and storage capabilities. Additionally the network provision is inherently more unreliable relative to the wired world of the Internet. Overcoming these hurdles is no easy task, but it has been done. This year has heralded a spate of WAP enabled devices, service and content providers, network operators and infrastructure providers. WAP is here. The WAP-enabled wireless w
An Introduction to Intrusion Detection and Assessment for System and Network Security Management Prepared by Rebecca Bace from Infidel, Inc. for ICSA, Inc. Systems and networks are subject to electronic attacks. The increasingly frequent attacks on Internetvisible systems are attempts to breach information security requirements for protection of data. Vulnerability-assessment tools check systems and networks for system problems and configuration errors that represent security vulnerabilities. Intrusion-detection systems collect information from a variety of vantage points within computer syste
The old cliche the ""network is the system"" becomes a reality with Microsoft?s Windows 2000 Distributed Services. A single login provides access to applications and resources spread throughout your Windows 2000 network. At first, this might appear to be a security management nightmare, but if Windows 2000 is properly deployed it provides a centralized security platform with many enhanced security features. Kerberos and the Public Key Infrastructure provide networking security opportunities The Microsoft Management Console (MMC) and enhancements to the Group Policy simplify management while p
Given the certainty that attempts will be made to compromise system and network security, and the likelihood that these attempts will succeed, every company, large or small, must be prepared to respond effectively to security incidents when they occur. Even sophisticated, state-of-the-art security systems are not foolproof ? thus, regardless of where a company is in the ?security spectrum,? an organized incident response capability is of the utmost importance.
Security has become one of the primary concerns when an organization connects its private network to the Internet. Regardless of the business, an increasing number of users on private networks are demanding access to Internet services such as the World Wide Web (WWW), Internet mail, Telnet, and File Transfer Protocol (FTP). In addition, corporations want to offer WWW home pages and FTP servers for public access on the Internet. Network administrators have increasing concerns about the security of their networks when they expose their organization?s private data and networking infrastructure to
v-GO? offers new levels of usability while maintaining application independence and improving security. v-GO?s architecture features: a simple, secure, independent user interface process that controls traditional passwords, a strong, extensible authentication methodology, an independent cryptographic subsystem, modular, flexible integration capabilities, controllable automation, centralized administration and defenses.
赛门铁克近日推出了Symantec Client Security 2.0-客户端整合安全解决方案,让我们一起来看看它有哪些新功能。
CA 11月30日宣布推出eTrust Security Command Center r8。
Security
Standards & Organizations
Security
Internet Technology Terms
Security
微软上个星期发布了免费的Windows安全漏洞检测工具。这个工具能够帮助IT管理员更容易地找出常见的安全配置错误。
350-018总共有100道题,考试时间2个钟头,通过分数线70%(我考了77%)。考试涉及的面比较广......
本周四,赛门铁克宣布收购WholeSecurity公司。
OASIS,国际电子商务标准组织,前不久宣布他的成员已经通过了WS-Security 版本 1.1作为OASIS标准,表示这一个最高水平的批准。由OASIS的Web Services安全(WSS)技术委员会的一个开放过程开发的WS-Security,为实现安全功能提供了一个技术基础,它能够提供例如在实现高层Web services应用程序的消息的完整性和保密性。
两家公司整合优秀的远程访问及双因鉴别解决方案来保护信息的保密性及完整性。