Defence in Depth: The art of stratifying your security system

October 5, 2007 — Giannella
Defence in Depth is all about protecting the information by building up a number of layers around it. It isn’t simply putting up and firewall and walking away. Defence in Depth is building a number of layers around the information that work together to provide a strong and (hopefully) impenetrable.

An example could be anti-virus software installed on individual workstations when there is already virus protection on the firewalls and servers within the same environment. Different security products from multiple vendors may be on different vectors within the network, helping prevent a shortfall in any one defence leading to a wider failure.

Read the rest of this entry »

Posted in Documentation, Learning, Security. Tags: , , , , . 1 Comment »

AV Engine Review 2007

August 11, 2007 — Giannella
We may have asked this question a kazillion times.

Which is the best AV Engine? How much does it cost?

TopTen Reviews got us quite a practical answer. This year, BitDefender, Kaspersky and ESET Nod32 have made it to the top 3 podium (respectively).

The top 10 known AV engines were rated over six different areas:

Read the rest of this entry »

Posted in Comparisons, Security. Tags: , , . No Comments »

5 Hints to Creating Secure Passwords

August 9, 2007 — Giannella
Definition:

“A password is a form of secret authentication data that is used to control access to a resource. The password is kept secret from those not allowed access, and those wishing to gain access are tested on whether or not they know the password and are granted or denied access accordingly.”

Actually passwords existed since forever. In movies we usually see sentries guarding a vault challenging a trespasser for a password. Then they would allow a person in if they knew the password.

Nowadays, passwords are used to control access to practically anything: Computer operating systems, mobile phones, cable TV decoders, automated teller machines (ATMs), etc. Passwords in computers are used for a multitude of purposes: logging in to computer accounts, retrieving email from servers, accessing files, databases, networks, web sites, and even reading the morning newspaper online.
How to make the password easy to remember and safe at the same time?

Read the rest of this entry »

Posted in Documentation, Learning, Troubleshooting. Tags: , . No Comments »