Member Login

E-mail:    Password:  




 TitleDate AddedCompany
whitepaper Addressing IT Risks of Software Applications: A Risk Management Strategy26/03/08 Symantec
  As companies increasingly depend on software applications to enhance operations, the business impact of a broad range of IT risks concurrently rises. This whitepaper describes an IT risk management strategy for applications. Key aspects of this strategy include developing an awareness of various types of IT risks related to applications, quantifying the potential business impacts of application-related IT risks, and building an institutional capability to manage this IT risk. The paper then outlines how Symantec’s advisory consultants support organizations to address their IT risk management needs for applications.  sponsored by
whitepaper The Importance of Application Security26/03/08 Symantec
  Application security has been a growing discipline in the IT world for about a decade. Not long ago, knowledge about securing applications came from a select few independent researchers, and resources for implementation were scarce. Through the years, more and more resources have become available as security expertise and toolsets have found their way to a wider population of technologists. Over the past five years, general knowledge of application security criteria has widened, making it rare that applications developers do not consider basic security aspects such as authentication and access control, among others.  sponsored by
whitepaper Sub-Operating Systems: A New Approach to Application Security2008-01-01 University of Pennsylvania
  Users regularly exchange apparently innocuous data files using email and ftp. While the users view these data as passive, there are situations when they are interpreted as code by some system application. In that case the data become "Active". Some examples of such data are Java, JavaScript and Microsoft Word attachments, each of which are executed within the security context of the user, allowing potentially arbitrary machine access. The structure of current operating systems and user applications makes solving this problem challenging. The paper proposes a new protection mechanism to address active content, which applies fine-grained access controls at the level of individual data objects. All data objects arriving from remote sources are tagged with a non-removable identifier.

Tags: Security Administration, Security Administration		   
whitepaper Extended Validation SSL Certificates2008-01-01 Thawte
  Extended Validation SSL delivers the acknowledged industry standard for the highest level of online identity assurance processes for SSL certificate issuance. Find out how the EV standard increases the visibility of authentication status through the use of a green address bar in the latest high security Web browsers.

Tags: E-commerce - E-Business, Security Administration, Authentication - Encryption, Authentication - Encryption, IT Budgeting		   
whitepaper Symantec Endpoint Protection 11.0 - Value Delivery Research Study2008-01-01 Symantec
  Symantec Endpoint Protection 11.0 is an integrated security application that provides a centralized solution for organization-wide endpoint management. It integrates antivirus, antispyware, desktop firewall, intrusion prevention, device and application control, and optional network access control capabilities. It lets IT security managers monitor and protect all critical endpoints - including desktops, laptops, and servers - from a single, easy-to-use management console. Symantec Endpoint Protection 11.0 combines Symantec AntiVirus with new advanced threat prevention technologies to protect against a variety of new threats, going beyond traditional antivirus and antispyware prevention to stop rootkits, bots, zero-day attacks, blended network-based intrusions, and data loss.

Tags: Security Administration, IT Budgeting		   
whitepaper Applications, virtualization and devices: taking back control2008-08-13 Sophos
  Employees installing legitimate but unauthorized applications are a real and growing threat to business security and productivity. Removable storage media and wireless protocols make the challenge of securing data even more complex. This paper explains why control is important and highlights how integrating this functionality into malware protection is the simplest and most cost-effective solution.

Tags: Intrusion - Tampering, Security Administration, Security Administration, Intrusion - Tampering		   
whitepaper Momentum Webcast: Why Small and Mid-Sized Businesses Need Secure Mobility Solutions From HP and Microsoft (Level 100)2007-12-13 Microsoft
  Notebook computers present a security dilemma. Among the best mobile productivity devices ever created, they may also be the single largest security threat to business infrastructure. Despite the alarming growth in the number of stolen notebook computers, and the subsequent compromise of vital and sensitive business data, executives, managers and employees are increasingly going mobile. HP and Microsoft provide business customers advanced notebook computer security and reliability with HP ProtectTools and the Windows Vista operating system, offering nearly all HP Compaq business notebook computers in Windows Vista configurations. This webcast address key security concerns for notebook users, such as user authentication, device control, and data protection. It also highlights key security risk scenarios and costs associated with security lapses.

Tags: Data Tools		   
whitepaper Why green security makes good business sense2007-12-13 Wick Hill Group
  Green issues are now being taken seriously in many areas of life. The computing industry is also looking to adopt green principles. What are the green issues in computing? How security vendor WatchGuard is implementing green policies, from product design and manufacture through to product use and product disposal.

Tags: Security Administration, Security Administration, IT Budgeting		   
whitepaper Symantec's Endpoint Security Challenge2007-12-01 Symantec
  Take the Endpoint Security Challenge and discover how your endpoint security solution compares to the protection your business needs. Register now and take the challenge. If you qualify, you will be automatically entered into a weekly drawing for an iPod Nano.

Tags: Security Administration, Security Administration, Security Administration		   
whitepaper Safe Termination of Orphan Processes on Windows NT Platforms2007-12-01 McAfee
  Rootkits are one of the greatest challenges to computer security. Due to the stealthy nature of rootkits, it is almost impossible for a user to see these hidden processes or files. In some situations, even security applications may not be able to detect the presence of rootkits. Rootkits use different methods to infect systems and hide their objects. Rootkit scanners use different methods to detect rootkits. One method is differentiation. This method takes a snapshot of the system's objects at a low-level layer (or even before the system boots, called preboot scanning); then it takes another snapshot at a very high-level layer and compares the differences.

Tags: Intrusion - Tampering, Security Administration		   
whitepaper IBM Internet Security Systems Products and Services2007-12-01 IBM
  Today's security threats leave little margin for error. To consistently preempt online enemies that are smart and destructive, enterprise security must incorporate a constantly evolving array of technologies and technical disciplines - vital assets that few organizations can afford to develop and maintain on their own. Effective security management is rife with challenges. It requires highly skilled personnel, who are expensive to recruit, hire and retain, and it diverts scarce IT resources from core activities essential to company productivity and growth.

Tags: Security Administration, Security Administration		   
whitepaper Sungshin Women's University Protects eLearning With Juniper's IDP2007-12-01 Juniper Networks
  Sungshin Women's University is a leading women's educational institution in Korea. The University wanted to secure the network infrastructure in order to ensure the performance and availability of the university's e-learning services and campus IT systems. In the vendor survey Juniper solution topped the evaluation with its ability to detect a wide range of threats through various methods such as complex signatures, stateful signatures, protocol exceptions and back door detection. Sungshin Women's University deployed the Juniper IDP 1100C, a purpose-built IDP platform which allows for rapid deployment of inline attack protection against worms, trojans, spyware, keyloggers and other malware.

Tags: Intrusion - Tampering