Posted in Security on April 11th, 2003 Comments Off
When I started blogging, I spent quite some time looking for weblogs covering security. There were none. Since then the situation has improved, but still search for security bloggers does not give particularly encouraging results.
So I thought it may be a goof idea to some time and I compiled a list of security weblogs.
Please […]
Posted in Security on April 9th, 2003 Comments Off
Last week BEA, Entrust, Sun and Waveset announced that they managed to implement a public prototype of SPML which is an XML-based open standard for user account provisioning. There are two reasons why I think SPML is quite important in short term.
1. It enables easier enterprise user and security administration.
Currently, there are no standards that would […]
Posted in Security on April 7th, 2003 Comments Off
“We think IDS is dead. It’s failed to provide enterprise value.” John Pescatore in an article on intrusion protection. This seems about right. Interestingly enough, although I remember hearing first about ‘intrusion protection’ some two years ago, I haven’t encountered anyone actually deploying it. Warning signs? Bells ringing ‘PKI’?
On the other hand, event correllation described […]