information assurance

TwitterFacebook
Get flash to fully experience Pearltrees
You have a secret that can ruin your life. It’s not a well-kept secret, either.

Kill the Password: Why a String of Characters Can't Protect Us Anymore

http://www.wired.com/gadgetlab/2012/11/ff-mat-honan-password-hacker/
Insider Threats

'Trust in Allah, but tie up your camel," says an Arabic proverb.

If your whole life is in your phone, you'd better not lose it

http://www.thenational.ae/thenationalconversation/comment/if-your-whole-life-is-in-your-phone-youd-better-not-lose-it
cloud

http://www.cryptograms.org/letter-frequencies.php

Letter Frequencies

The frequency of letters in text messages has often been studied for use in cryptography , and frequency analysis in particular. An exact analysis of this is not possible, as each person writes slightly differently; however, an approximate ordering of English letters by frequency of use is ETAOIN SHRDL UCMFG YPWBV KXJQZ. This brings up an interesting point. Letter frequencies, like word frequencies, tend to vary, both by writer and by subject. One cannot talk about x-rays without using frequent Xs, and cannot use any letter if it is broken on one's keyboard.
web security

(A play in 4 acts. Please feel free to exit along with the stage character that best represents you. Take intermissions as you see fit. Click on the stage if you have a hard time seeing it. If you get bored, you can jump to the code . Most importantly, enjoy the show!) http://www.moserware.com/2009/09/stick-figure-guide-to-advanced.html

A Stick Figure Guide to the Advanced Encryption Standard (AES)

Building For A Secure Future: Risk Assessment

http://enr.construction.com/features/buildings/archives/020325b.asp B efore a designer can recommend security measures for a facility, he or she must understand what people and property–the "assets" in security parlance–need to be protected. Usually this assessment is quite straightforward, but the task gets complicated when trying to predict where threats may come. This knowledge has a direct bearing on what kinds of damage the designer must attempt to mitigate. "You can't even do the simplest facility assessment until you know what the threats are.
i 1 Vote This is a topic that has generated a great deal of traffic on the Linkedin “Governance, Risk and Compliance Management (GRC) site. If you are a member I recommend you read through the comments, if not you should consider joining. This is a cross post, slightly modified, of my answer to this question, so forgive the double traffic if you are a member. http://infosecalways.com/2010/02/04/what-is-the-best-starting-point-to-embrace-risk-management/

What is the best starting point to embrace risk management? « InfoSecAlways.com

Recently I was asked if I could provide a few pointers to help in developing a risk assessment process for an organization. I thought I would share my response. First, I would like to draw your attention to the mind map image over to the left of this text. The mind map represents a basic risk management methodology and is provided by Wikiversity . If you are unfamiliar with Wikiversity, it is an interesting project which is “devoted to learning resources and learning projects for all levels, types, and styles of education from pre-school to university, including professional training and informal learning.” It is a very interesting project and I applaud their efforts.

Risk Assessment: A Starting Point

http://blog.securitymonks.com/2008/09/22/risk-assessment-a-starting-point/