Member Login

E-mail:    Password:  




 TitleDate AddedCompany
whitepaper The Essential Elements of Comprehensive Endpoint Security26/03/08
  Establishing a comprehensive endpoint security solution is complicated, and issues like accounting for unmanaged nodes only increase the scope of the challenge. What's more, selecting and stitching together an appropriate set of counter-measures means navigating a complex landscape of point products. Accordingly, the intent of this white paper is to clarify the the endpoint security problem and identify the functional requirements of a comprehensive endpoint security solution.  sponsored by
whitepaper Alternate Data Streams - What's Hiding in Your Windows NTFS?2006-10-30 08:21:32 Global Knowledge Network
  This paper will explain how hackers and malware authors take advantage of ADSs to hide their malicious software. It will also explain how they can be created, executed, found, and removed.   
whitepaper Penetration Testing: Assessing Your Overall Security Before Attackers Do2007-02-16 09:43:52 Core Security
  Network Security has evolved from protecting against "script kiddies" trying to break into networks to combating criminal organizations that have complex and strategic hacking efforts. It has become apparent that there is real money to be made from criminal hacking and this trend is putting companies at substantial risk. The only way to really determine if your company's data is secure is to be a hacker yourself and test your company's security.

This white paper from the SANS Training Institute shows you how to:
  • Perform penetration tests against your network and find security holes before hackers do
  • Replicate the types of actions that a malicious attacker would take
  • Give your company a more accurate representation of your security posture at any given time
  • And much more
   
whitepaper Using Security Compliance Software to Improve Business Efficiency and Reduce Costs2006-09-12 12:24:44 Symantec
  This IDC white paper analyzes the cost of complying with increasing numbers of government regulations. It discusses specific cost reduction strategies and cites Symantec's security solutions as examples of packaged solutions that can help enterprises reduce their overall costs and still meet regulatory requirements. Finally, the authors recommend strategies for implementing packaged compliance solutions. (Sponsored by Symantec)   
whitepaper "Going Up, Going Down!" - A Review of Quarter 2/20062006-06-01 MessageLabs
  Welcome to the June Edition of the MessageLabs Intelligence monthly report. This report provides the latest threat trends for June 2006, as well as a quarterly retrospective, to keep you informed regarding the ongoing fight against viruses, spam and other unwelcome content.   
whitepaper Complying with the HIPAA Security Rule: Protecting ePHI in Email, HTTP, and FTP Transmissions2007-05-16 08:17:19 Proofpoint
  While compliance dates for various HIPAA rules have already passed, many healthcare-related organizations are still working to achieve full compliance with HIPAA.

This whitepaper describes how organizations can maintain the privacy and security of electronic protected health information (ePHI) over e-communications channels (including SMTP email, HTTP, and FTP protocols. Learn why an effective solution should have the ability to accurately differentiate between ePHI and "de-identified" health information, in order to properly enforce privacy policies and achieve or improve compliance with HIPAA guidelines.

Download this whitepaper from Proofpoint, Inc. to learn:
  • Which components of the HIPAA Security, EDI and Privacy rule impact email and other forms of e-communication.
  • How Proofpoint's Healthcare Privacy Solution applies to the HIPAA Security, EDI and Privacy rules.
   
whitepaper Outbound Email and Content Security in Today's Enterprise, 20062007-05-16 08:17:19 Proofpoint
  Data protection continues to be a hot topic as large-scale breaches of personal information come to light and as the regulatory environment becomes more sophisticated. The convenience and ubiquity of email as a business communications tool has exposed enterprises to a wide variety of new risks associated with outbound email.

How concerned are companies about the content of email leaving their organizations? How do companies manage the legal and financial risks associated with outbound email?

Proofpoint commissioned Forrester Consulting to field an online survey of email decision makers at large US and UK enterprises. Respondents were asked about their concerns, priorities and plans related to the content of email leaving their organizations.

Read Proofpoint's 3rd annual study which summarizes the findings of this survey, including surprising statistics about how large companies address outbound messaging and content security issues. 		  
whitepaper Ethical Hacking: Teaching Students to Hack2006-06-09 01:00:26 East Carolina University
  One of the fastest growing areas in network security, and certainly an area that generates much discussion, is that of ethical hacking. The purpose of this paper is to examine the literature regarding how private sectors and educational institutions are addressing the growing demand for ethical hacking instruction. The paper will also examine the opportunity for community colleges in providing this type of instruction. The discussion will conclude with a proposed model of ethical hacking instruction that will be used to teach a course in the summer semester of 2006 through the continuing education department at Caldwell Community College and Technical Institute within the North Carolina Community College System.   
whitepaper Digital Content Protection LSI for PC-Based Digital TV Receivers2006-06-07 01:00:26 Fujitsu
  This paper describes a "Digital content protection LSI" that prevents the hacking of PC-based digital TV receivers. Given the wide public knowledge about PC architecture, crackers may gain unauthorized access to PC software. Consequently, many broadcasters and other content holders are concerned that digital broadcast content may be stolen. This situation has curtailed the development of PC-based digital TV receivers for some time. Therefore, the authors have designed a protection scheme whereby content is protected even in open architecture environments such as the PC environment. This protection has been implemented in the form of a digital content protection LSI. These LSIs will open the way for the continued development of PCbased digital TV receivers.   
whitepaper Protection of Corporated Networks Against Targeted Attacks2006-04-27 07:21:54
  In contrast to typical malicious code attacks, carried out indiscriminately in order to affect as many systems as possible, targeted attacks can be defined as those which look to affect a specific user. A frequent example of a targeted attack is where users receive infected files through instant messaging from people who, having previously won the victim's confidence, are actually IT criminals.   
whitepaper DNS Cache Poisoning: Definition and Prevention2006-04-27 08:02:19
  The Internet would grind to a halt - would not be possible - without a Domain Name System (DNS). As this paper shows, the proper operation of DNS is fundamental to the maintenance and distribution of the addresses for the vast number of nodes around the globe. So it would be too much to hope for crackers (malicious hackers) to ignore DNS as they continuously look for new ways to circumvent your security. There are several facets to DNS security. This paper focuses on one of the most dangerous types of attack - DNS cache poisoning.