In my earlier blogs: Security & Legal Confusion , The Dumbing Down of Product Security Certifications , and Dumbing Down of Common Criteria...Continued I have described the changes to the Common Criteria (CC) that are being pushed by NIAP and other CC Scheme members. The most concerning are the direction...
Posted to
Security Web
by
Michael F. Angelo
on
Aug 30, 2012
Filed under:
Filed under: Regulations, NIST, legislation, Michael F. Angelo, Certification, Common Criteria, NIAP, Common Criteria Certification, Protection Profile, EAL4, PP, EAL2, ST, Security Target, CC, National Information Assurance Program, EAL3, BSI, EAL1, CESG, mandates, EAL, COTS, EAL5, Commercial Off The Shelf, Certifications, Communications Security Establishment Canada, CSEC, CCRE, Future, Security Web
As some have noticed, I have been holding off on posting over the past six months. This is because I have become confused with respect as to what to comment on and what to motivate changes for. If we look at the areas I typically track (certifications, cyber legislation / controls, security incidents...
Posted to
Security Web
by
Michael F. Angelo
on
Aug 16, 2012
Filed under:
Filed under: Compliance, Microsoft, NIST, hacking, Michael F. Angelo, Internet Kill Switch, Certification, Common Criteria, NIAP, Common Criteria Certification, security incidents, cyber legislation, security technology, cyber security, civil liability, risk assessment, key validation, Council on Critical Infrastructure Components, S3414, CBW, quantum cryptography, EAL, National Cyber Security Council, 1024 bit, evaluation assurance levels, cryptographic analysis tools, S.3414, Cyber Security Act of 2012, Mat Honan, Security Web
Joe Tasker , former General Counsel of ITAA and VP of Government Affairs at Compaq , had attended a webinar that went over the newly published draft NIST Guidelines on Security and Privacy in Public Cloud Computing , and asked me what I thought. Lucky for me I just completed two blog posts for SC Magazine...
Posted to
Security Web
by
Michael F. Angelo
on
Feb 10, 2011
Filed under:
Filed under: Security, Encryption, Cloud Computing, SC Magazine, Data Protection, Privacy, NIST, Michael F. Angelo, Cloud, DoS Attack, Identity Theft, Personally Identifiable Information, Electronic Discovery, Public, Stolen Credit Cards, hibernated cloud, Public Cloud, Hibernation, Guidelines, BotNet, Spam, Service Level Agreements, SLAs, PII, Elastic Cloud, Joe Tasker, Compaq, Security Web
September is going to be pretty busy, but lots of opportunities for you to catch up with NetIQ. For more upcoming event listings, check out NetIQ’s events page .: Sept 1, 2010, London, UK : IDC's IT Security Conference 2010 enables end user IT professionals to discover what they should be targeting...
Posted to
NetIQ Blog
by
David Shephard
on
Aug 30, 2010
Filed under:
Filed under: Aegis, AppManager, Security Manager, Singapore, London, IDC, Durban, Conference, Risk, Insider Threat, Security, Banking, NRG Energy, Financial, GovTech, Gartner, Ira Winkler, SC Magazine, NIST, David Shephard, Drop
I actually find myself agreeing with Larry Ellison ... But I guess he is right once in a while! Maybe that is why he can take some time off work to go win the Americas Cup . But I digress... I too think there is a lot of hype around the "cloud." My point is that existing and readily available...