Skip to main content

Home/ Information Security/ Group items tagged Information

Rss Feed Group items tagged

Filter: All | Bookmarks | Topics Simple Middle
Carlos Gomes

DRM-roll for consumer privacy protection - Network World - 0 views

www.networkworld.com/...0724sec2.html

assurance copyrights drm intellectual-property misa security

shared by Carlos Gomes on 13 Mar 07 - Cached
  • Through DRM technologies, consumers engaging in electronic commerce could grant vendors and suppliers a license to access and utilize certain aspects of the consumers’ data. This would enable a consumer to grant a read/write license to some creditors, perhaps as a function of a mortgage agreement, and provide a read-only license to a limited subset of the data for simple transactions such as shipping agreements and online orders. Such a license would empower consumers to prevent entities from misusing or reselling consumer information.
Carlos Gomes

The SwitchWare Project - 0 views

www.cis.upenn.edu/...index.html

assurance msia security security.toresearch

shared by Carlos Gomes on 13 Mar 07 - Cached
  • The SwitchWare Project Active Network Research at Penn and Bellcore Active networks explore the idea of allowing routing elements to be extensively programmed by the packets passing through them. This allows computation previously possible only at endpoints to be carried out within the network itself, thus enabling optimizations and extensions of current protocols as well as the development of fundamentally new protocols. Welcome to the SwitchWare home page, describing the Active Networks research effort underway in the Penn Department of Computer and Information Science and Bellcore as well as pointers to related material.
Carlos Gomes

Welcome to CAcert.org - 1 views

www.cacert.org/index.php

assurance cryptography msia pki security

shared by Carlos Gomes on 13 Mar 07 - Cached
  • CAcert.org is a community driven, Certificate Authority that issues certificates to the public at large for free. CAcert's goal is to promote awareness and education on computer security through the use of encryption, specifically with the X.509 family of standards. We have compiled a document base that has helpful hints and tips on setting up encryption with common software, and general information about Public Key Infrastructures (PKI). For the enthusiast looking to dip their toe in the water, we have an easy way of obtaining certificates you can use with your email program. You can use these not only to encrypt, but to prove to your friends and family that your email really does come from you. For administrators looking to protect the services they offer, we provide host and wild card certificates which you can issue almost immediately. Not only can you use these to protect websites, but also POP3, SMTP and IMAP connections, to list but a few. Unlike other certificate authorities, we don't limit the strength of the certificates, or the use of wild card certificates. Everyone should have the right to security and to protect their privacy, not just those looking to run ecommerce sites. If you're extremely serious about encryption, you can join CAcert's Assurance Programme and Web of Trust. This allows you to have your identity verified to obtain added benefits, including longer length certificates and the ability to include your name on email certificates. CAcert Inc. is a non-profit association, incorporated in New South Wales Australia.
Rich Hintz

SP-800-66-Revision1.pdf (application/pdf Object) - 0 views

csrc.nist.gov/...SP-800-66-Revision1.pdf

security health information regulations

shared by Rich Hintz on 23 Dec 08 - No Cached
wolf hesse liked it
  • Rich Hintz on 23 Dec 08
     
    Introductory Resource Guide for Implementing HIPPA Security Rule
netsec

Amazon.com: A New Host-Based Hybrid IDS Architecture - A Mind Of Its Own: The Know-how ... - 0 views

www.amazon.com/...ref=sr_1_1

ids intrusion detection system intrusion detection host-based intrusion detection hybrid intrusion detection host-based hybrid intrusion detection network security internet security computer security information security

shared by netsec on 04 Sep 09 - No Cached
  • netsec on 04 Sep 09
     
    Amazon.com: A New Host-Based Hybrid IDS Architecture - A Mind Of Its Own: The Know-how Of Host-Based Hybrid Intrusion Detection System Architecture Using Machine Learning Algorithms With Feature Selection (9783639172881): Murat Topallar: Books
Seçkin Anıl Ünlü

Plugging the CSS History Leak at Mozilla Security Blog - 0 views

blog.mozilla.com/...plugging-the-css-history-leak

security web history mozilla online browsers privacy bugfix

shared by Seçkin Anıl Ünlü on 17 Apr 10 - Cached
  • History Sniffing
  • Links can look different on web sites based on whether or not you’ve visited the page they reference.
  • The problem is that appearance can be detected by the page showing you links, cluing the page into which of the presented pages you’ve been to. The result: not only can you see where you’ve been, but so can the web site!
  • ...18 more annotations...
  • The most obvious fix is to disable different styles for visited versus unvisted links, but this would be employed at the expense of utility: while sites can no longer figure out which links you’ve clicked, neither can you.
  • David Baron has implemented a way to help keep users’ data private while minimizing the effect on the web, and we are deploying it to protect our users.
  • The biggest threats here are the high-bandwidth techniques, or those that extract lots of information from users’ browsers quickly.
  • The JavaScript function getComputedStyle() and its related functions are fast and can be used to guess visitedness at hundreds of thousands of links per minute.
  • we’re approaching the way we style links in three fairly subtle ways:
  • Change 1: Layout-Based Attacks
  • First of all, we’re limiting what types of styling can be done to visited links to differentiate them from unvisited links.
  • can only be different in color
  • the CSS 2.1 specification takes into consideration how visited links can be abused:
  • implement other measures to preserve the user’s privacy while rendering visited and unvisited links differently
  • Change 2: Some Timing Attacks
  • we are changing some of the guts of our layout engine to provide a fairly uniform flow of execution to minimize differences in layout time for visited and unvisited links.
  • when the link is styled, the appropriate set of styles is chosen making the code paths for visited and unvisited links essentially the same length.
  • Change 3: Computed Style Attacks
  • JavaScript is not going to have access to the same style data it used to.
  • Firefox will give it unvisited style values.
  • it’s the right trade-off to be sure we protect our users’ privacy.
  • fixing CSS history sniffing will not block all of these leaks. But we believe it’s important to stop the scariest, most effective history attacks any way we can since it will be a big win for users’ privacy.
David Woodsmall

Computer Problem Solved - 4 views

You could probably do it for free with free software - has always worked for me Complete Slow Windows Computer & Slow Browser Fixes http://www.woodsmall.com/SLOW-misbehaving-computer-fixes.htm

computer problem

started by cecilia marie on 13 Jul 11 1 follow-up, last by David Woodsmall on 27 Feb 14
Geoffrey Milos

802.11 Beacons Revealed - 0 views

www.wi-fiplanet.com/...80211-Beacons-Revealed.htm

wifi howto hacking cracking networking security

shared by Geoffrey Milos on 12 Feb 15 - No Cached
  • Beacon interval. This represents the amount of time between beacon transmissions. Before a station enters power save mode, the station needs the beacon interval to know when to wake up to receive the beacon (and learn whether there are buffered frames at the access point).
  • Beacon interval. This represents the amount of time between beacon transmissions. Before a station enters power save mode, the station needs the beacon interval to know when to wake up to receive the beacon (and learn whether there are buffered frames at the access point).
  • An 802.11 probe response frame is very similar to a beacon frame, except that probe responses don't carry the TIM info and are only sent in response to a probe request. A station may send a probe request frame to trigger a probe response when the station needs to obtain information from another station. A radio NIC, for instance, will broadcast a probe request when using active scanning to determine which access points are within range for possible association. Some sniffing software (e.g., NetStumbler) tools send probe requests so that access points will respond with desired info
  • ...1 more annotation...
  • n an idle network, beacons dominate all other traffic.
peerlyst

WannaCry no more: ransomware worm IOC's, Tor C2 and technical analysis + SIEM rules, by... - 0 views

www.peerlyst.com/...s-siem-rules-andrii-bezverkhyi

SIEM WannaCry Ransomware IOC Network Malware Vulnerability Exploit Security Infosec Information

shared by peerlyst on 20 May 17 - No Cached
  • peerlyst on 20 May 17
     
    After a rather long day, night and morning of studying the news, researching and hunting the #WannaCry ransomware worm there are some discoveries to be shared.. This includes Host and Network IOCs, their analysis obtained with help of fellow security researchers and practitioners, review of C2 infrastructure and its interactions with Tor. Last but not least are some free SIEM use cases. What else should a security practitioner know for their handling of WannaCry?
timothy999

Current internet / ISP problems, slowness and attacks - 5 views

I've recently faced the same issue. Having asked Google, I found an interesting and informative article https://www.firesticktricks.com/why-is-my-internet-so-slow.html. It provided me with the poss...

web slow internet isp connection attack

started by David Woodsmall on 25 Jul 14 2 follow-ups, last by timothy999 on 21 Feb 22
‹ Previous 21 - 36 of 36
Showing 20 items per page