Security

Case Studies

Vendor Webcast

Show all content

Title Date Added Company

Enriching Network Security Analysis With Time Travel 2008-08-22 Association for Computing Machinery

In many situations it can be enormously helpful to archive the raw contents of a network traffic stream to disk, to enable later inspection of activity that becomes interesting only in retrospect. The paper presents a Time Machine (TM) for network traffic that provides such a capability. The TM leverages the heavy-tailed nature of network flows to capture nearly all of the likely-interesting traffic while storing only a small fraction of the total volume. An initial proof-of-principle prototype established the forensic value of such an approach, contributing to the investigation of numerous attacks at a site with thousands of users.

Tags: Security Management, Intrusion Detection Systems

How to Replicate the Fire: HA for Netfilter Based Firewalls 2008-08-22 Astaro

With traditional, stateless firewalling (such as ipfwadm, ipchains) there is no need for special HA support in the firewalling subsystem. As long as all packet filtering rules and routing table entries are configured in exactly the same way, one can use any available tool for IP-Address takeover to accomplish the goal of failing over from one node to the other. With Linux 2.4.x netfilter/iptables, the Linux firewalling code moves beyond traditional packet filtering. Netfilter provides a modular connection tracking susbsystem which can be employed for stateful firewalling.

Tags: Network Security, Linux Server OS

VeriSign Code Signing Digital Certificates for Adobe AIR Technology 2008-08-18 Verisign

Learn how to digitally sign your applications on Adobe(R) AIR(TM) with a VeriSign(R) Code Signing Digital Certificate, which verifies the authenticity of the publisher and the integrity of the product. As a result, your software will be digitally "shrink-wrapped" and less likely to be tampered with.

Tags: E-fulfillment, Application Security Tools, Security Applications, Digital Signatures, E-commerce Security

Naive Bayes Classifier Learning With Feature Selection for Spam Detection in Social Bookmarking 2008-08-11 Soongsil University

Social bookmarking systems such as BibSonomy and del.icio.us have become increasingly popular with the prevalent use of internet. These systems provide powerful infrastructure solutions for semantic annotation and information sharing, promoting diverse kinds of internet-based activities, e.g., web exploration, creating and joining web-based communities, and buying recently published volumes. This paper proposes a machine learning-based approach to automatic spam detection. In specific, a set of relevant features, i.e., the number of posts and posted tags for each user are extracted from training data. The extracted tags are sorted by mutual information. Then, the tags, having high mutual information value and used in test data, are chosen for the classification task.

Tags: Spam - E-mail Fraud - Phishing

Licensing:: Firewalls and Security Considerations 2008-08-08 Citrix Systems

This paper provides the details about security considerations for Citrix Licensing and how to modify port numbers. It is designed to provide the more detailed information for the tasks that extend beyond the scope of installing the licensing components and is designed to complement the Getting Started with Citrix Licensing Guide.

Tags: Network Security

Seven Lesser-Known System Attacks and How to Defeat Them 2008-08-05 IBM

Too often, businesses and enterprises focus on the dangers that get the most press and forget that there are plenty of other ways they can be hurt. This paper outlines some of the lesser-known attacks that a business can face and points out ways to defend against them. When one thinks of the types of vulnerabilities that an attacker can use to enter a system, several common types of attacks come to mind, such as those that exploit buffer overflows, weak passwords, or even configuration issues. This paper explores some of the other kinds of attacks that are out there and how one can detect and defeat them.

Tags: Security Management, Data Recovery - Security

Global Best Practices in Email Security, Privacy and Compliance 2008-08-04 Proofpoint

A new generation of email security solutions is needed to meet the challenges of growing message traffic, rapidly-evolving security threats and increasingly complex data protection and privacy regulations worldwide.

Securing inbound email - while challenging enough - is less difficult than maintaining compliance with the complex, overlapping and sometimes conflicting global regulations that govern data privacy, transactional ethics and corporate governance.

Some of these regulations are designed to stop sources of spam, viruses and spyware. Others intend to make companies more responsible for the protection of customers' privacy and more accountable for the substance of their financial reports.

All have a pronounced affect on corporate email. Download this whitepaper from Ziff Davis and Proofpoint to learn more about:

Email security mandates for the protection of non-public information (NPI) and company confidential information

The impact of financial reporting regulations on email security

Addressing increased security and productivity threats such as spam, viruses and spyware

Lessons learned in specific vertical industries such as Financial Services, Health Care and Public Sector

Tags: Security Tools, Email, Spam - E-mail Fraud - Phishing

Free-Riding, Fairness, and Firewalls in P2P File-Sharing 2008-08-04 Delft University of Technology

Peer-to-peer file-sharing networks depend on peers uploading data to each other. Some peers, called free-riders, will not upload data unless there is an incentive to do so. Algorithms designed to prevent free-riding typically assume that connectivity is not a problem. However, on the Internet, a large fraction of the peers resides behind a firewall or NAT, making them unable to accept incoming connections. This paper proves that it is impossible to prevent free-riding when more than half of the peers are firewalled, and the paper will provide bounds on the sharing ratios (defined as the number of bytes uploaded divided by the number of bytes downloaded) of both firewalled and non-firewalled peers.

Tags: Firewalls, Network Security

DyNeF: Host-Privilege-Based Dynamic Network Firewall for Grid Environment 2008-08-01 World Academy of Science, Engineering and Technology

Security in grid environment is still a major challenge considering the possible security breaches that can occur in a multi-institutional resource sharing infrastructure. Unlike the Internet, grid is a dynamic collection of resources, users and services that poses increased security challenges to the research community. This paper address the need for a dynamic network firewall in grid environment for supporting its dynamic nature whereby, protecting it from network intrusions. In this vision, it brings out the need for host-based access privileges and the importance of these privileges in addressing security challenges imposed by the grid environment.

Tags: Firewalls, Network Security

AEP SmartGate VPN Security: An Identity-Based Virtual Private Network (VPN) 2008-07-31 AEP Networks

The long-standing practice of building private information networks by leasing dedicated circuits has virtually disappeared due to advances in networking technology and economies of scale realized by the Internet. Today, enterprises are seeking solutions that allow secure "Anytime-anywhere" access using the Internet to increase productivity and reduce costs. Virtual Private Networks (VPNs) have become the accepted method of securing data for transport over a public network, connecting with business partners and enabling remote access. But the truth is, all VPNs are not created equally. There is plenty of confusion when one delves into the world of VPN security because of its complicated nature, plethora of offerings, and misinformation.

Tags: Network Security, Security Management

Jump to 1 2 3 4 5 [6] 7 8 9 10

Title	Date Added	Company
Enriching Network Security Analysis With Time Travel	2008-08-22	Association for Computing Machinery
In many situations it can be enormously helpful to archive the raw contents of a network traffic stream to disk, to enable later inspection of activity that becomes interesting only in retrospect. The paper presents a Time Machine (TM) for network traffic that provides such a capability. The TM leverages the heavy-tailed nature of network flows to capture nearly all of the likely-interesting traffic while storing only a small fraction of the total volume. An initial proof-of-principle prototype established the forensic value of such an approach, contributing to the investigation of numerous attacks at a site with thousands of users. Tags: Security Management, Intrusion Detection Systems
How to Replicate the Fire: HA for Netfilter Based Firewalls	2008-08-22	Astaro
With traditional, stateless firewalling (such as ipfwadm, ipchains) there is no need for special HA support in the firewalling subsystem. As long as all packet filtering rules and routing table entries are configured in exactly the same way, one can use any available tool for IP-Address takeover to accomplish the goal of failing over from one node to the other. With Linux 2.4.x netfilter/iptables, the Linux firewalling code moves beyond traditional packet filtering. Netfilter provides a modular connection tracking susbsystem which can be employed for stateful firewalling. Tags: Network Security, Linux Server OS
VeriSign Code Signing Digital Certificates for Adobe AIR Technology	2008-08-18	Verisign
Learn how to digitally sign your applications on Adobe(R) AIR(TM) with a VeriSign(R) Code Signing Digital Certificate, which verifies the authenticity of the publisher and the integrity of the product. As a result, your software will be digitally "shrink-wrapped" and less likely to be tampered with. Tags: E-fulfillment, Application Security Tools, Security Applications, Digital Signatures, E-commerce Security
Naive Bayes Classifier Learning With Feature Selection for Spam Detection in Social Bookmarking	2008-08-11	Soongsil University
Social bookmarking systems such as BibSonomy and del.icio.us have become increasingly popular with the prevalent use of internet. These systems provide powerful infrastructure solutions for semantic annotation and information sharing, promoting diverse kinds of internet-based activities, e.g., web exploration, creating and joining web-based communities, and buying recently published volumes. This paper proposes a machine learning-based approach to automatic spam detection. In specific, a set of relevant features, i.e., the number of posts and posted tags for each user are extracted from training data. The extracted tags are sorted by mutual information. Then, the tags, having high mutual information value and used in test data, are chosen for the classification task. Tags: Spam - E-mail Fraud - Phishing
Licensing:: Firewalls and Security Considerations	2008-08-08	Citrix Systems
This paper provides the details about security considerations for Citrix Licensing and how to modify port numbers. It is designed to provide the more detailed information for the tasks that extend beyond the scope of installing the licensing components and is designed to complement the Getting Started with Citrix Licensing Guide. Tags: Network Security
Seven Lesser-Known System Attacks and How to Defeat Them	2008-08-05	IBM
Too often, businesses and enterprises focus on the dangers that get the most press and forget that there are plenty of other ways they can be hurt. This paper outlines some of the lesser-known attacks that a business can face and points out ways to defend against them. When one thinks of the types of vulnerabilities that an attacker can use to enter a system, several common types of attacks come to mind, such as those that exploit buffer overflows, weak passwords, or even configuration issues. This paper explores some of the other kinds of attacks that are out there and how one can detect and defeat them. Tags: Security Management, Data Recovery - Security
Global Best Practices in Email Security, Privacy and Compliance	2008-08-04	Proofpoint
A new generation of email security solutions is needed to meet the challenges of growing message traffic, rapidly-evolving security threats and increasingly complex data protection and privacy regulations worldwide. Securing inbound email - while challenging enough - is less difficult than maintaining compliance with the complex, overlapping and sometimes conflicting global regulations that govern data privacy, transactional ethics and corporate governance. Some of these regulations are designed to stop sources of spam, viruses and spyware. Others intend to make companies more responsible for the protection of customers' privacy and more accountable for the substance of their financial reports. All have a pronounced affect on corporate email. Download this whitepaper from Ziff Davis and Proofpoint to learn more about: Email security mandates for the protection of non-public information (NPI) and company confidential information The impact of financial reporting regulations on email security Addressing increased security and productivity threats such as spam, viruses and spyware Lessons learned in specific vertical industries such as Financial Services, Health Care and Public Sector Tags: Security Tools, Email, Spam - E-mail Fraud - Phishing
Free-Riding, Fairness, and Firewalls in P2P File-Sharing	2008-08-04	Delft University of Technology
Peer-to-peer file-sharing networks depend on peers uploading data to each other. Some peers, called free-riders, will not upload data unless there is an incentive to do so. Algorithms designed to prevent free-riding typically assume that connectivity is not a problem. However, on the Internet, a large fraction of the peers resides behind a firewall or NAT, making them unable to accept incoming connections. This paper proves that it is impossible to prevent free-riding when more than half of the peers are firewalled, and the paper will provide bounds on the sharing ratios (defined as the number of bytes uploaded divided by the number of bytes downloaded) of both firewalled and non-firewalled peers. Tags: Firewalls, Network Security
DyNeF: Host-Privilege-Based Dynamic Network Firewall for Grid Environment	2008-08-01	World Academy of Science, Engineering and Technology
Security in grid environment is still a major challenge considering the possible security breaches that can occur in a multi-institutional resource sharing infrastructure. Unlike the Internet, grid is a dynamic collection of resources, users and services that poses increased security challenges to the research community. This paper address the need for a dynamic network firewall in grid environment for supporting its dynamic nature whereby, protecting it from network intrusions. In this vision, it brings out the need for host-based access privileges and the importance of these privileges in addressing security challenges imposed by the grid environment. Tags: Firewalls, Network Security
AEP SmartGate VPN Security: An Identity-Based Virtual Private Network (VPN)	2008-07-31	AEP Networks
The long-standing practice of building private information networks by leasing dedicated circuits has virtually disappeared due to advances in networking technology and economies of scale realized by the Internet. Today, enterprises are seeking solutions that allow secure "Anytime-anywhere" access using the Internet to increase productivity and reduce costs. Virtual Private Networks (VPNs) have become the accepted method of securing data for transport over a public network, connecting with business partners and enabling remote access. But the truth is, all VPNs are not created equally. There is plenty of confusion when one delves into the world of VPN security because of its complicated nature, plethora of offerings, and misinformation. Tags: Network Security, Security Management

Cutting-edge technology from premium sponsors

Oracle Technology Solutions for Midsize Businesses

Oracle Business Intelligence Standard Edition One - New!

Improve employee productivity with an out-of-the-box employee portal that lets you store, find, share, and access business information.

Oracle's Vision for an Enterprise Performance Management System

Brought to you by:

More Tech Showcases:

Oracle Technology
NEC ExpressCluster

ZDNet Asia Top Tech 50 Index

AT&T

Asustek

Canon

Convergys

Ericsson

Hewlett-Packard

Infosys

LogicaCMG

NTT

Samsung

SingTel Group

Toshiba

Xerox

Accenture

Atos Origin

Capgemini

Dell

France Telecom

Hitachi

Intel

Microsoft

Nokia

Satyam Computer Services

Sony

Verizon Communications

ZTE

Alcatel-Lucent

British Telecom

China Mobile

Deutsche Telekom

Fujitsu

Huawei Technologies

LG Electronics

Motorola

Oracle

Seagate Technology

Sun Microsystems

Western Digital

Apple

CSC

Cisco Systems

EMC

Google

IBM

Lenovo Group

NEC

SAP

Siemens IT Solutions & Services

Tata Consultancy Services

Wipro

ZDNet Asia's Top Tech Index will be next updated in 2010.

HP StorageWorks 2000sa Modular Smart Array
Enabling easy transition from direct attached to centralized storage.

Six Priorities for Today�s Economic Climate
Learn how to reduce costs and achieve maximum value from IT.

Give Your Business the Competitive Edge
With the industry's most connected business intelligence solution.

Protect Your Business Critical Systems
With award-winning disaster recovery solutions by NEC.

Free IT Salary Report 2009
Register and be the first to download this invaluable resource

ZDNet Asia Top Tech Index

Find out who you should be spending your IT budget with

Top Tech 50 Index

Top 10 Fastest Growing

IT Leader of the Year

More from CBS Interactive

CBS Interactive Inc Sites

About ZDNet Asia |

About CBS Interactive |

ZDNet Asia editorial calendar |

Advertise with us |

Jobs |

Partnership |

Contact Us |

CNET Direct |

CNET Asia |

CNET Asia mobile |

Sitemap

ZDNet.com |

ZDNet Japan |

ZDNet.de |

CNET UK |

CNET.de |

Tech Republic |

BNET |

MP3.com |

activeTechPros |

ZDNet UK |

ZDNet Korea |

ZDNet France |

CNET Australia |

CNET France |

Download.com |

Builder |

GameSpot

ZDNet Australia |

ZDNet Taiwan |

CNET |

CNET Taiwan |

News.com |

Silicon.com |

TV.com |

GameSpot Korea

News | Insight | Reviews | TechGuides | Jobs | Blogs | Videos | Community | Downloads | IT Library |

Get RSS feeds

Featured Whitepapers

Member Login

Oracle Technology Solutions for Midsize Businesses

ZDNet Asia Top Tech 50 Index

ZDNet Asia Top Tech Index