| Title | Date Added | Company | |
|---|---|---|---|
 |
Data Security - Complexity, Cost and Potential Legislation | 2008-03-01 | Kaulkin Ginsberg |
| Currently, there is no uniform standard for data security - either voluntary or mandated by the federal government. However, the large number of bills introduced in recent Congresses suggests that the House and the Senate are no longer looking the other way. With the significant possibility of legislative changes establishing a whole new series of compliance requirements, there is a strong case for the financial services industry to create one on its own. As businesses grapple with the issues of data security and identity theft, the financial services industry has developed a number of standards and certifications in its attempts to ensure compliance with existing federal guidelines for the storage and sharing of consumer information.
Tags: Data Recovery - Security |
|||
 |
Food Company Improves Protection With Easily Managed, Comprehensive Solution | 2008-01-01 | Microsoft Tips |
| California-based Del Monte Foods sells popular branded food and pet products in grocery stores and other outlets across the United States. Recently, the company's work force has grown, which means messaging and collaboration has played an increasingly important role for Del Monte employees, who use Microsoft Exchange Server 2007 and Microsoft Office SharePoint Server 2007 to communicate. To improve protection of its information and management of these technologies, Del Monte deployed Microsoft Forefront Security for Exchange Server and Forefront Security for SharePoint, Microsoft Forefront Server Security Management Console, and Microsoft System Center Operations Manager. These combined products offer Del Monte easy deployment, solid antivirus protection, and centralized control of the IT environment.
Tags: Email, Collaboration Tools |
|||
|
2007 Gartner Endpoint Protection Magic Quadrant Report | 2007-12-01 | McAfee |
| This report from Gartner, Inc. discusses how traditional point product anti-virus, anti-spyware and personal firewall markets have been eclipsed by broader suites of related security technologies, which Gartner has labeled the EPP (Endpoint Protection Platforms). Various EPP vendors are evaluated based on their ability to execute in the marketplace and completeness of vision. Download this paper today to learn how EPP suites are being extended with new capabilities, such as encryption and data loss prevention (DLP) and how the various vendors and their solutions are ranked by Gartner.
Tags: Network Security, Security Management, Spyware |
|||
|
Real-Time Multistage Attack Awareness Through Enhanced Intrusion Alert Clustering | 2007-12-01 | University at Buffalo |
| Correlation and fusion of intrusion alerts to provide effective Situation Awareness of cyber-attacks has become an active area of research. Snort is the most widely deployed intrusion detection sensor. For many networks and their system administrators, the alerts generated by Snort are the primary indicators of network misuse and attacker activity. However, the volume of the alerts generated in typical networks makes real-time attack scenario comprehension dif-cult. This paper present an attack-stage oriented classification of alerts using Snort as an example, and demonstrate that this effectively improves real-time Situation Awareness of multistage attacks. It also incorporate this scheme into a real-time attack detection framework and prototype presented by the authors in previous work and provide some results from testing against multistage attack scenarios.
Tags: Intrusion Detection Systems |
|||
|
Improving the Efficiency and Robustness of Intrusion Detection Systems | 2007-12-01 | Georgia Institute of Technology |
| With the increase in the complexity of computer systems, existing security measures are not enough to prevent attacks. Intrusion detection systems have become an integral part of computer security to detect attempted intrusions. Intrusion detection systems need to be fast in order to detect intrusions in real time. Furthermore, intrusion detection systems need to be robust against the attacks which are disguised to evade them. The runtime complexity and space requirements of a host-based anomaly detection system are improved that uses q-gram matching. q-gram matching is often used for approximate substring matching problems in a wide range of application areas, including intrusion detection.
Tags: Intrusion Detection Systems |
|||
|
Dependency-Based Distributed Intrusion Detection | 2007-12-01 | Massachusetts Institute of Technology |
| Distributed network intrusion detection has attracted much attention recently. The main focus in this work is on zero-day, slow-scanning worms, of which no existing signatures are available. End hosts are organized into regions based on network knowledge, which it posits is positively correlated to the dependency structure. Leveraging on this organization, different intrusion detection techniques are applied within and across regions. A Hidden Markov Model (HMM) is used within a region to capture the dependency among hosts, and use Sequential Hypothesis Testing (SHT) globally to take advantage of the independence between regions.
Tags: Intrusion Detection Systems |
|||
|
Agentrics Standardizes on IBM Rational AppScan Software to Help Deliver Safe Web Applications to Large Retailers | 2007-12-01 | IBM |
| Agentrics serves as the trusted agent for the retail and consumer goods industry by helping retailers, manufacturers and their trading partners optimize shared business processes. To maintain its strong reputation, Agentrics needed to incorporate the latest security technology to protect its Web-based technology and services. Agentrics deployed IBM Rational AppScan software to automate its Web application security testing. The AppScan solution has become part of Agentrics' overall security and development strategy, resulting in increased confidence and safer applications for the company's high-profile retail clients. | |||
|
Stealthy Malware Detection Through VMM-Based "Out-of-the-Box" Semantic View Reconstruction | 2007-11-02 | Association for Computing Machinery |
| An alarming trend in malware attacks is that they are armed with stealthy techniques to detect, evade, and subvert malware detection facilities of the victim. On the defensive side, a fundamental limitation of traditional host-based anti-malware systems is that they run inside the very hosts they are protecting ("In the box"), making them vulnerable to counter-detection and subversion by malware. To address this limitation, recent solutions based on Virtual Machine (VM) technologies advocate placing the malware detection facilities outside of the protected VM ("Out of the box"). However, they gain tamper resistance at the cost of losing the native, semantic view of the host which is enjoyed by the "In the box" approach, thus leading to a technical challenge known as the semantic gap. | |||
|
Genetic Algorithm for Framing Rules for Intrusion Detection | 2007-11-01 | SCAD COLLEGE OF ENGINEERING & TECHNOLOGY |
| With the rapid expansion of computer networks during the past decade, security has become a crucial issue for computer systems. The detection of attacks against computer networks is becoming a harder problem to solve in the field of Network security. Intrusion Detection is an essential mechanism to protect computer systems from many attacks. As the transmission of data over the internet increases the need to protect connected system also increases. Therefore, unwanted intrusions take place when the actual software systems are running. A brief overview of Intrusion Detection System, genetic algorithm and related detection techniques was presented. In this paper the method of learning the Intrusion Detection, rules based on genetic algorithms is presented.
Tags: Intrusion Detection Systems |
|||
|
Vulnerability Assessment: The Right Tools to Protect Your Critical Data | 2007-10-18 | Application Security |
| Vulnerability Assessment (VA) has become one of the hottest fields within the computer security market. VA tools are designed to detect and report on security holes within various software applications, allowing organizations to take corrective actions before a devastating attack occurs. Due to the reduction in "time to exploit" once a new vulnerability reaches the public domain, and the regulatory pressures imposed on businesses within a variety of verticals, the need for reliable vulnerability assessment has never been greater. Unfortunately, the environment in which software applications are developed today is largely driven by schedule and features, rather then stability or security.
Tags: Data Recovery - Security |
Cutting-edge technology from premium sponsors
Oracle Technology Solutions for Midsize Businesses
Oracle's Vision for an Enterprise Performance Management System
Improve employee productivity with an out-of-the-box employee portal
- ZDNet.com |
- ZDNet Japan |
- ZDNet.de |
- CNET UK |
- CNET.de |
- Tech Republic |
- BNET |
- MP3.com |
- activeTechPros |
- ZDNet UK |
- ZDNet Korea |
- ZDNet France |
- CNET Australia |
- CNET France |
- Download.com |
- Builder |
- GameSpot
- ZDNet Australia |
- ZDNet Taiwan |
- CNET |
- CNET Taiwan |
- News.com |
- Silicon.com |
- TV.com |
- GameSpot Korea
News |
Insight |
Reviews |
TechGuides |
Jobs |
Blogs |
Videos |
Community |
Downloads |
IT Library |
Copyright © 2008 CNET Networks, Inc., a CBS Company. All rights reserved. Privacy Policy.
