Security through Obscurity … is it always applicable?

June 21, 2008 — Giannella

“Security through Obscurity”

Wikipedia definition:

Security through obscurity is a controversial principle in security engineering, which attempts to use secrecy to provide security. A system relying on it may have theoretical or actual security vulnerabilities, but its owners or designers believe that the flaws are not known, and that attackers are unlikely to find them.

What (I think) is wrong…

Read the rest of this entry »

Posted in Security. Tags: , , . 1 Comment »

Flock: Community versus Security?

March 28, 2008 — Giannella
flock.jpgWhat is Flock?

Source

Flock is focused on fundamentally evolving the browser, bringing a refreshing new approach to how people use and participate on the web and simplifying social and web-based applications by bringing them one step closer to the user and integrating them directly into the browser.

The interesting part starts here…

Read the rest of this entry »

Posted in Releases, Security. Tags: , , , , , . 2 Comments »

Vulnerability Management: Good Practices

October 4, 2007 — Giannella
We live in the age where technology is involved in almost every business process and threats such as vulnerability exploitation are an unfortunate reality.

In this post I’ll be pointing out some factors one should keep in mind when looking to manage software vulnerabilities.

Click the image above to enlarge it

Read the rest of this entry »

Posted in Learning, Security. Tags: , , . No Comments »