|
 |
In Electronic Voting Systems, it's all about Transparency and Recovery
by Avi Rubin
Electronic voting machines have been hailed as a savior of our elections and vilified as insecure. Avi Rubin, professor of computer science at Johns Hopkins University and technical director of the information security institute, believes that security, recoverability and auditability are crucial components of any electronic voting system. In other words, a paper trail is essential to the security of our local, state and national elections. “At the end of the election, we must either be able to declare a winner, or we have to run the election again,” he says. Read more>>
Secrets, Technology and Insider Threats
By Dan Verton
The insider threat is one of the biggest threats to the security and stability of the nation and the private companies that constitute its economic engine, says Dan Verton. The author of a new book on the subject, Verton takes a look at what happens when electronic boundaries become amorphous and the person you trust the most may become the one who is stealing your company's most sensitive information. Read more>>
The Malicious - An excerpt from Verton's new book and a case study in how psychological stressors and triggers can play a role in malicious insider attacks. Read more>>
Digital Steganography
By James E. Wingate, CISSP-ISSEP, CISM, NSA-IAM
Steganography can be used to establish covert channels between an insider and one or more outside entities. With digital steganography, it is possible to hide information “inside” a digital file, or message, to conceal it from view. Is it a threat? That's a controversial question. James E. Wingate, Vice President for West Virginia Operations and Director, Steganography Analysis and Research Center (SARC) for Backbone Security, looks at the issue and where it fits in the information security landscape. Read more>>
Information Security Standards: A Review
By David Mertz
The US has a patchwork of legislative initiatives addressing privacy issues, unlike some other countries with their overarching single piece of legislation detailing privacy rights. In addition to federal legislation, 30 states have passed laws requiring the protection of confidential data and industry based standards, such as the Payment Card Industry's Data Security Standard, are affecting information security. David Mertz, Director of Compliance Service GSI, takes a look at the montage. Read more>>
Security and VoIP
By Howard Schmidt
The movement towards Voice over Internet Protocol (VoIP) is unstoppable, says Howard Schmidt, and by 2010 more than 66 percent of large organizations in the US will be using VoIP products and services. Schmidt, president and CEO of R&H Security Consulting LLC and a Special Agent/computer crime investigator with the US Army CID, looks at the challenges involved in adequately securing this new tool. “There are some well-founded concerns around the security and reliability of any type of voice network,” he says. Read more>>
The InfraGard® Program and the Delivery of Value
By Robert Schmidt
The InfraGard Program recently celebrated its 10th Anniversary. During that time, it has grown and thrived to become much more than what originally was envisioned. Now it must work on new and innovative ways to deliver value to its public and private sector members, says InfraGard National Members Alliance President Robert Schmidt. Gaining trust and coordinating goals continue to challenge the organization. Schmidt looks at how the public and private sectors view the organization's value and where InfraGard goes from here. Read more>>
National Pandemic Awareness Month
The InfraGard National Members Alliance (INMA) declared January National Pandemic Awareness Month. The action was spurred by work already done by the Atlanta, GA, Birmingham, AL, and New Haven, CT InfraGard chapters, as well as that planned by the Los Angeles, CA and New York City Metro alliances. Read more>>
Your Expertise is Needed: Protect Your Sector
InfraGard members are invited to participate in a series of Town Hall style meetings to solicit input from Subject Matter Experts (SME) on details of IT Sector-Specific Plans. The Department of Homeland Security will use the resulting proposals as a roadmap to protect critical infrastructure in the United States. Read more>>
The Gardian welcomes reader comments. Please send those to editor@infragardmembers.org.
Previous Edition >>
Readers respond to the Summer issue of The Gardian. Read more>>
|
