- Subscribe to this page:
- RSS
- Email Alert
Information Risk Management
(21 results)-
White Papers
IT Security and the Curse of Complacency
January 1, 2008, 12:00am PST
This paper aims to stimulate thought and discussion around the current state of the IT security industry. Fundamentally it aim to dispel the notion that IT security is now less important owing to...
Provided by Information Risk Management
-
White Papers
Biologger - A Biometric Keylogger
December 1, 2007, 12:00am PST
This paper realises a proof-of-concept implementation of a biometric keylogger, or "Biologger'. While conventional keyloggers are typically used to obtain passwords or encryption keys to...
Provided by Information Risk Management
-
White Papers
Targeting VOIP
October 1, 2008, 12:00am PDT
As more and more companies move towards a full scale replacement of conventional PSTN phones with a VOIP infrastructure, there is an increased incentive for malicious individuals to break into the...
Provided by Information Risk Management
-
White Papers
Risky Business - Hacking the Trading Floor
September 1, 2008, 12:00am PDT
Drawing on the author's experience of working on large Forex, over-the-counter and proprietary trading systems for Fortune 500 banks, this paper aims to highlight the current application security...
Provided by Information Risk Management
-
White Papers
WebSphere MQ Threats - A Management Summary
December 19, 2007, 12:00am PST
Businesses around the world use WebSphere MQ due to its reputation as a proven and reliable data transport mechanism. As with all technologies a lack of security awareness combined with demanding...
Provided by Information Risk Management
-
White Papers
Security Testing Enterprise Messaging Systems
December 1, 2007, 12:00am PST
All the large investment banks worldwide use enterprise messaging systems to transport data concerning billions of dollars worth of transactions daily. Therefore, the security of the messaging...
Provided by Information Risk Management
-
White Papers
Everyday Password Cracking
December 1, 2007, 12:00am PST
Password cracking is anecdotally described as a straightforward process. While the general idea is indeed easy to grasp, one of the biggest challenges faced by security consultants is time...
Provided by Information Risk Management
-
White Papers
The Importance of Threat Modelling
December 1, 2007, 12:00am PST
Threat modelling is a strategic way of building security into applications by enumerating threats relevant to the solution. Also known as application risk assessment, it helps application...
Provided by Information Risk Management
-
White Papers
Biometrics Demystified
December 1, 2007, 12:00am PST
One is living in a society where identity has never before been so important. One is possessive of the identities and ideas of the self, which is likely to be just one reason for scepticism...
Provided by Information Risk Management
-
White Papers
MPLS Security Overview
December 1, 2007, 12:00am PST
MPLS (Multi-Protocol Label Switching) is a switching technology, which forwards packets in a network according to so-called labels attached to the packets. These labels are attached as soon as the...
Provided by Information Risk Management
-
White Papers
Hardware Keylogger Detection
December 1, 2007, 12:00am PST
This paper provides an analysis of how hardware-based keyloggers work and offers suggestions as to how they may be detected. In addition, active countermeasures are proposed that may be used to...
Provided by Information Risk Management
-
White Papers
GPRS and 3G Security Overview
December 1, 2007, 12:00am PST
General Radio Packet System (GPRS) provides a network infrastructure to facilitate a range of data services that are provided by network operators worldwide. 3G is the common name for UMTS...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Application Security Test
August 1, 2008, 12:00am PDT
The UK gaming market alone is expected to continue to grow in excess of £10bn in 2009, with total turnovers reaching £100bn. Vast sums of money exchange hands daily via electronic means, exposing...
Provided by Information Risk Management
-
Case Studies
Configuration Review - Firewalls & Routers Industry Sector: Media and Telecommunications
August 1, 2008, 12:00am PDT
Firewalls aim to provide organisations with reliable security at the network perimeter; however each firewall must be properly configured in order to allow and disallow network traffic...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Configuration Review - IDS/IPS
August 1, 2008, 12:00am PDT
Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) are crucial components of an organisation's security infrastructure. However to maximise the effectiveness of an IDS or...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Penetration Test
August 1, 2008, 12:00am PDT
The finance sector has largely championed the increasingly interconnected business world. The need for the facilitation of Business-To-Business (B2B) and Business-To-Customer (B2C) commerce, rapid...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Penetration Test - Citrix
August 1, 2008, 12:00am PDT
Citrix deployments are often utilised to provide restricted-functionality environments to internal staff and third-party organisations, including contractors and external consultants. If not...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Secure Application Development Training
August 1, 2008, 12:00am PDT
Application layer vulnerabilities manifest themselves as a result of a lack of a Security Aware Software Development Lifecycle (SDLC), or simply poorly-written code. Since attackers have shifted...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: User Access Review
August 1, 2008, 12:00am PDT
In large multi-user environments it is often difficult to establish exactly who has access to data, systems or applications. Historical user accounts and group memberships along with various...
Provided by Information Risk Management
-
White Papers
High-Level Reverse Engineering
December 1, 2007, 12:00am PST
This paper aims to present a methodical framework for high-level reverse engineering. The methodology is a culmination of existing tools and techniques within the IT security research community,...
Provided by Information Risk Management
-
White Papers
Bootstrapping Mobile PINs Using Passwords
May 16, 2011, 12:00am PDT
The authors describe a method of deriving PINs from passwords. The method is useful to obtain friction-free user on-boarding to mobile platforms. It has significant business benefits to...
Provided by Information Risk Management
-
White Papers
Bootstrapping Mobile PINs Using Passwords
May 16, 2011, 12:00am PDT
The authors describe a method of deriving PINs from passwords. The method is useful to obtain friction-free user on-boarding to mobile platforms. It has significant business benefits to...
Provided by Information Risk Management
-
White Papers
High-Level Reverse Engineering
December 1, 2007, 12:00am PST
This paper aims to present a methodical framework for high-level reverse engineering. The methodology is a culmination of existing tools and techniques within the IT security research community,...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: User Access Review
August 1, 2008, 12:00am PDT
In large multi-user environments it is often difficult to establish exactly who has access to data, systems or applications. Historical user accounts and group memberships along with various...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Secure Application Development Training
August 1, 2008, 12:00am PDT
Application layer vulnerabilities manifest themselves as a result of a lack of a Security Aware Software Development Lifecycle (SDLC), or simply poorly-written code. Since attackers have shifted...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Penetration Test - Citrix
August 1, 2008, 12:00am PDT
Citrix deployments are often utilised to provide restricted-functionality environments to internal staff and third-party organisations, including contractors and external consultants. If not...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Penetration Test
August 1, 2008, 12:00am PDT
The finance sector has largely championed the increasingly interconnected business world. The need for the facilitation of Business-To-Business (B2B) and Business-To-Customer (B2C) commerce, rapid...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Configuration Review - IDS/IPS
August 1, 2008, 12:00am PDT
Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) are crucial components of an organisation's security infrastructure. However to maximise the effectiveness of an IDS or...
Provided by Information Risk Management
-
Case Studies
Configuration Review - Firewalls & Routers Industry Sector: Media and Telecommunications
August 1, 2008, 12:00am PDT
Firewalls aim to provide organisations with reliable security at the network perimeter; however each firewall must be properly configured in order to allow and disallow network traffic...
Provided by Information Risk Management
-
Case Studies
Information Risk Management Case Study: Application Security Test
August 1, 2008, 12:00am PDT
The UK gaming market alone is expected to continue to grow in excess of £10bn in 2009, with total turnovers reaching £100bn. Vast sums of money exchange hands daily via electronic means, exposing...
Provided by Information Risk Management
-
White Papers
GPRS and 3G Security Overview
December 1, 2007, 12:00am PST
General Radio Packet System (GPRS) provides a network infrastructure to facilitate a range of data services that are provided by network operators worldwide. 3G is the common name for UMTS...
Provided by Information Risk Management
-
White Papers
Hardware Keylogger Detection
December 1, 2007, 12:00am PST
This paper provides an analysis of how hardware-based keyloggers work and offers suggestions as to how they may be detected. In addition, active countermeasures are proposed that may be used to...
Provided by Information Risk Management
-
White Papers
MPLS Security Overview
December 1, 2007, 12:00am PST
MPLS (Multi-Protocol Label Switching) is a switching technology, which forwards packets in a network according to so-called labels attached to the packets. These labels are attached as soon as the...
Provided by Information Risk Management
-
White Papers
Biometrics Demystified
December 1, 2007, 12:00am PST
One is living in a society where identity has never before been so important. One is possessive of the identities and ideas of the self, which is likely to be just one reason for scepticism...
Provided by Information Risk Management
-
White Papers
The Importance of Threat Modelling
December 1, 2007, 12:00am PST
Threat modelling is a strategic way of building security into applications by enumerating threats relevant to the solution. Also known as application risk assessment, it helps application...
Provided by Information Risk Management
-
White Papers
Everyday Password Cracking
December 1, 2007, 12:00am PST
Password cracking is anecdotally described as a straightforward process. While the general idea is indeed easy to grasp, one of the biggest challenges faced by security consultants is time...
Provided by Information Risk Management
-
White Papers
Security Testing Enterprise Messaging Systems
December 1, 2007, 12:00am PST
All the large investment banks worldwide use enterprise messaging systems to transport data concerning billions of dollars worth of transactions daily. Therefore, the security of the messaging...
Provided by Information Risk Management
-
White Papers
WebSphere MQ Threats - A Management Summary
December 19, 2007, 12:00am PST
Businesses around the world use WebSphere MQ due to its reputation as a proven and reliable data transport mechanism. As with all technologies a lack of security awareness combined with demanding...
Provided by Information Risk Management
-
White Papers
Risky Business - Hacking the Trading Floor
September 1, 2008, 12:00am PDT
Drawing on the author's experience of working on large Forex, over-the-counter and proprietary trading systems for Fortune 500 banks, this paper aims to highlight the current application security...
Provided by Information Risk Management
-
White Papers
Targeting VOIP
October 1, 2008, 12:00am PDT
As more and more companies move towards a full scale replacement of conventional PSTN phones with a VOIP infrastructure, there is an increased incentive for malicious individuals to break into the...
Provided by Information Risk Management
-
White Papers
Biologger - A Biometric Keylogger
December 1, 2007, 12:00am PST
This paper realises a proof-of-concept implementation of a biometric keylogger, or "Biologger'. While conventional keyloggers are typically used to obtain passwords or encryption keys to...
Provided by Information Risk Management
-
White Papers
IT Security and the Curse of Complacency
January 1, 2008, 12:00am PST
This paper aims to stimulate thought and discussion around the current state of the IT security industry. Fundamentally it aim to dispel the notion that IT security is now less important owing to...
Provided by Information Risk Management
Keep Up with TechRepublic
Upcoming Webcasts
Upcoming webcasts from leading IT vendors
-
2012-05-24 at 11:00 am PT | 2:00 pm ET
Live Webcast: The 2012 Guide to Better Business Benefits from Data Analytics
Sponsored by Tableau Software
-
2012-06-05 at 11:00 am PT | 2:00 pm ET
Live Webcast: Getting to Microsoft Office 365: The right migration for your business
Sponsored by Microsoft
-
2012-06-12 at 9:00 am PT | 12:00 pm ET
Live Webcast: WebSphere DataPower for Mobile Application Security
Sponsored by IBM
Submit a Paper
Get your content listed in our directory!
Our directory is the largest library of vendor-supplied technical content on the Web. It’s also the first place IT decision makers turn to when researching technology solutions. Our members are already finding your competitors’ papers here - shouldn’t they find yours, too? It's FREE so click here and submit your white paper, case study, data sheet, research report, or other document today!
