When it was discovered that video feeds from U.S. Predator and Reaper unmanned drones were being hacked by insurgents in Iraq, it became evident that cybersecurity has a long way to go to become more secure. The natural reaction is to point the finger at software producers, the government, and the push for functionality over security. But it may be that a different model is needed for the software itself.
Breach of the Drones
Posted by admin on December 20, 2009
http://redlightsecurity.com/2009/12/20/breach-of-the-drones/
Implementing Trust Between Systems
When designing or reviewing a system, it is common to ensure that trust is established between end-users and the applications. Trust in this context means that the users are trusted because they have proven their identity, and their authority to access the application has been verified. Many times, trust between system components is overlooked. This can be a deadly sin for software design that can lead to security vulnerabilities.
Posted by admin on December 16, 2009
http://redlightsecurity.com/2009/12/16/implementing-trust-between-systems/
Cybersecurity in 2010: Bubble or Blip?
Take a look at Google trends for the word “cybersecurity”, and see what you find. In the third quarter of 2008, there were two small blips on the radar for this search term. In 2009 there was a sharp rise throughout the year. What will 2010 look like for cybersecurity, and are we at the beginning of a cybersecurity bubble?
Posted by admin on December 15, 2009
http://redlightsecurity.com/2009/12/15/cybersecurity-in-2010-bubble-or-blip/
On-the-fly Encryption with TrueCrypt
How sensitive is your data? You may use highly confidential data at work or at home. If you are concerned about the potential exposure of that data, encryption may be a good solution for ensuring that your data remains protected. One tool that you can use to encrypt your data is TrueCrypt. It is a free, open source program that works on Windows 7/Vista/XP, Mac OS X, and Linux.
Posted by admin on December 13, 2009
http://redlightsecurity.com/2009/12/13/on-the-fly-encryption-with-truecrypt/
Spinning Out of Control: Securely Managing Virtual Sprawl
Server virtualization is taking hold. It boasts so many advantages that it is likely to become the standard for data centers around the world. It saves money by maximizing hardware resources. It reduces the number of physical servers, which reduces power consumption. It also revolutionizes server deployment by allowing servers to be copied as easily as files on the file system. Add to this the benefit of using pre-configured virtual appliances, and you should be convinced that virtual servers are good for your business.
Posted by admin on April 28, 2008
http://redlightsecurity.com/2008/04/28/spinning-out-of-control-securely-managing-virtual-sprawl/
Patch Management In a Virtual World
As more and more companies adopt virtualization in their data centers to reduce the number of physical servers and save money, security strategies need to be developed in parallel. While security may push back on this movement and resist its adoption, it will be far more beneficial to develop security strategies to deal effectively with advancing virtualization technologies.
Posted by admin on April 13, 2008
http://redlightsecurity.com/2008/04/13/patch-management-in-a-virtual-world/
Privacy on the Web: The Beacons Know You
Did you ever notice how a web site you have never visited before knows your interests enough to give you targeted advertisements? Sometimes, the ads are based on the content of the site, but other times, there appears to be no connection. There is an approach to collecting user information that crosses web site boundaries and maintains a history of your preferences.
Posted by admin on March 1, 2008
http://redlightsecurity.com/2008/03/01/privacy-on-the-web-the-beacons-know-you/