Security Warrior Surprise, Security, and the American Experience (The Joanna Jackson Goldman Memorial Lectures on American Civilization and gOvernment) Security Analysis: The Classic 1940 Edition Exploiting Software : How to Break Code Hacking Exposed: Network Security Secrets & Solutions, Fourth Edition Terrorism, Freedom, and Security: Winning Without War The Intelligent Investor: The Definitive Book On Value Investing, Revised Edition Inside Network Perimeter Security: The Definitive Guide to Firewalls, Virtual Private Networks (VPNs), Routers, and Intrusion Detection Systems The Intelligent Asset Allocator: How to Build Your Portfolio to Maximize Returns and Minimize Risk

• It nicely complements my own page on the economics of security. ...
• I lead the security group at the laboratory, where I hold a faculty post as Professor of Security Engineering. ...
• Economics of information security - including material on `Trusted Computing' .
• Reliability of security systems - including ATM fraud and ssmartcard hacking .
• Security of clinical information systems - including the Iceland database .
• Economics of information security.
• For example, will digital signatures make the Internet more secure? Is so-called `trusted computing' a good idea, or just another way for Microsoft to make money? And what about all the press stories about `Internet hacking' - is this threat serious, or is it mostly just scaremongering by equipment vendors? It's not enough for security engineers to understand ciphers; we have to understand incentives as well. This has led to a rapidly growing interest in `security economics'. ...
• Why Information Security is Hard - An Economic Perspective was the paper that got information security people thinking about the subject. It applies economic analysis to explain a number of phenomena that security researchers had previously found to be pervasive but perplexing. Why do mass-market software products such as Windows contain so many security bugs? Why are their security mechanisms so difficult to manage? Why are government evaluation schemes, such as the Orange Book and the Common Criteria, so bad? This paper was presented at the Applications Security conference in December 2001, and also as an invited talk at SOSP 2001. ...
• The row about `Trusted Computing' was ignited by a paper I presented on the security issues relating to open source and free software at a conference on Open Source Software Economics in Toulouse in June 2002. ... In the first part, I show that the usual argument about open source security - whether source access makes it easier for the defenders to find and fix bugs, or makes it easier for the attackers to find and exploit them - is misdirected. ...
• My Economics and Security Resource Page provides a guide to the literature and to what's on. See especially the call for papers for the third international Workshop on Economics and Information Security (WEIS 04), May 13-14, 2004, University of Minnesota if you're interested in getting involved. We now also have a regular series of Cambridge seminars on economics, networks and security. ...

• NTBugtraq is a mailing list for the discussion of security exploits and security bugs in Windows NT, Windows 2000, and Windows XP plus related applications. ...
• As the Editor of NTBugtraq, and "Surgeon General" of TruSecure Corporation, Russ Cooper has frequently commented on current Microsoft Security issues in the news. ...

• Home PC Security -Firewalls -System Monitoring -File Sharing -Security Glossary -Links Server Security -Software -IPTables Generator -Vulnerability Database -Links and Groups Hacking News Privacy -Software -Anonymous Web -Links Mobile & Wireless -Software Anti-Virus -Services & Vendors -Links Press Releases Our Products -Bookstore Hideaway. ...
• Half a Million Military Social Security Numbers Stolen (4) -->.
• The Open Web Application Security Project has released a report outlining the top ten vulnerabilities in web applications. ...
• Prolific hacker group Gobbles have posted some disturbing claims on the Bugtraq security mailing list - namely, that they were recruited by the RIAA to develop a virus/worm hybrid for combating music piracy. ...
• Security firm AtStake has released an advisory for an obscure flaw in the implementation of Ethernet device drivers that could lead to information leakage. ...
• A security blunder at PR firm Carmichael Lynch left customer databases and other sensitive files exposed for over six months, according to Wired. ...
• Aside from propagating, it attempts to disable several anti-virus and security applications. ...
• Issue #60 of Phrack magazine has been released online, chock full of the latest in hacking and computer security. ...
• Half a Million Military Social Security Numbers Stolen.
• Hard drives containing the Social Security numbers of some 500,000 members of the military and their families, along with addresses, credit card numbers, and other personal data, were stolen from TriWest Healthcare Alliance offices last week. ...
• Microsoft has issued a critical security update for a flaw in the Windows shell that affects all versions of XP: Home, Professional, Media Center Edition, and Tablet PC Edition. ... A corrupted MP3 or WMA file, present on a network share, web site, or HTML e-mail, could be used to trigger this security hole and execute arbitrary code under the current user context. ...
• Join our spam-free list and get the latest security alerts and news mailed to you weekly. ...
• Security Headlines.

• 1980s: The killing of John Lennon as well as attacks against Ronald Reagan and Pope John Paul II affect the hobby: entertainers and political figures rebuff their security detail after these incidents. ...
• 1993: Monica Seles is stabbed in Germany, raising security levels at worldwide sports events. ...
• 2001: The September 11 terrorist attacks make airport security levels raise, making it difficult for general public to ask stars for autographs at airports. ...

• 28 March, 2004 CanSecWest security coference is coming April 21-23 April. What other security conference boasts a second breakfast? .

• The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library. ...
• 6l is now available, including security fix.
• 6l engine is now available, including security fix.
•    Security Advisory: Denial of Service in ASN. ...

• 2004 Riviera Hotel & Casino Selects NFR Security to Protect Guest and Financial Data.
• "Living the Security Ecosystem".

• Interview with Paul Zimski, Harris Corporation's STAT Computer Security Unit.
• Paul Zimski, CISSP, discusses government security, security scanning as well as online security problems. ...
• Large enterprise application security.
• Security body supports biometrics.
• UK firms failing security challenge.
• Wi-Fi security still poor.
• USDA to certify security.
• Microsoft warns of a score of security holes.
• User access system to improve IT security.
• + Sanctum Hits Record Numbers in Q1 2004, Extending Lead in Application Security Market with 95 Percent Revenue Growth.

• TruSecure dramatically improves security and reduces risk by helping organizations make better security decisions and maximizing the effectiveness of their existing security people, processes, and products. ...
• Threat Type: Security Solution Weakness.
• Several SNMP security vulnerabilities have been addressed in a CERT advisory. ...
• Information Security Decisions Conference 20-21 Apr. ...
• META Group's 2004 Risk, Security, and Compliance Conference 27-29 Apr. ...
• Microsoft Security Strategies Roadshow 29 Apr. ...

• Computer Security News.
• The Twenty Most Critical Internet Security Vulnerabilities (Updated) ~ The Experts Consensus.
• The SANS Top 20 Internet Security Vulnerabilities .
• Three years ago, the SANS Institute and the National Infrastructure Protection Center (NIPC) at the FBI released a document summarizing the Ten Most Critical Internet Security Vulnerabilities. ...
• Although there are thousands of security incidents each year affecting these operating systems, the overwhelming majority of successful attacks target one or more of these twenty vulnerable services. ...
• It is the result of a process that brought together dozens of leading security experts. They come from the most security-conscious federal agencies in the US, UK and Singapore; the leading security software vendors and consulting firms; the top university-based security programs; many other user organizations; and the SANS Institute. ...
• It includes step-by-step instructions and pointers to additional information useful for correcting the security flaws. ...
• Learn how to improve your system security .
• Security Awareness Training .
• System and network administrators in charge of IIS deployments should familiarize themselves with Microsofts extensive collection of tools and security documents relating to the proper administration of Internet Information Server. ...
• The main repository for IIS related security documentation is the Internet Information Sever (IIS) Security Center. ...
• It is suggested that you download and run the Microsoft Baseline Security Analyzer which contains detection procedures specifically tailored to IIS. ...
• HFNetChk, the Network Security Hotfix Checker, assists the system administrator in scanning local or remote systems for current patches. ... com/technet/security/tools/hfnetchk. ...
• com/technet/security/tools/locktool. ...

• The articles in this issue aim to have frank and open debates on wireless security's problems as well as advantages so that the results benefit everyone.
• Building Security In.
• The IEEE CS Press books department is actively soliciting expert book authors for security topics. ...
• IEEE Security & Privacy's Web site is maintained by Monette Velasco.
• Read our Privacy and Security guidelines. ...
•   Security and Privacy.

• Setting a new standard in proactive security, SecureIIS works from within IIS to protect web servers from known and unknown attacks. ...
• Retina® Network Security Scanner.
• REM™ - Security Management Platform.
• Setting a new standard in proactive security, SecureIIS works from within IIS to protect web servers from known and unknown attacks.
• Release: eEye Discovers Six Security Flaws in Microsoft Windows Release: University of Miami Selects eEye's EVA Solution Release: eEye Bolsters Enterprise Vulnerability Solution Advisory: ISS Server Response Vulnerability Release: eEye Contracts to Begin Common Criteria Process Release: Iris® Wins People’s Security Choice Award .
• Network security news. ...

• Thousands of customers of a Texas-sized Web hosting company enjoy full disclosure of a recent security breach, thanks in part to a California law. ...
• Security education still important, says FNB .
• Voice over IP Security.
• This article discusses some of the advantages, disadvantages and security concerns with Voice over IP telephony. ...
• Anti-Spam Solutions and Security, Part 2.
• The second and final part of this article series focuses on the various types of challenge-based systems and cryptographic solutions that can be used to combat spam and its related security issues. ...
• 0 Security.
• FOUNDATIONS HIPAA Security Rule.
• IBM WebSphere Unspecified Security Vulnerability.
• Macromedia MAR-12-2004: Potential Security Risk with Macromedia E-Licensing Client Activation Code.

• Nmap Security Scanner.
• Security Tools.
• Security Lists.
• Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. ...
• Acclaimed: Nmap has won numerous awards, including "Information Security Product of the Year" by Linux Journal, Info World and Codetalker Digest. ...
• Light discussion about relevant network security and scanning issues is also appropriate. ...
• Both lists are archived (along with many other security lists) at seclists. ...

• 0 With Expanded Federated Security Capabilities .
• Netegrity is now one of the few companies with a highly manageable and scalable identity management solution that supports all of the leading federation standards including SAML, Liberty, and WS-Security. ...
• 0 security, this is the perfect opportunity to save on your training investment. ...

• In 1940, having obtained permission from the War Office, he joined the King's Own Scottish Borderers regiment of the British Army in Rouen before being assigned to the Field Security Police in Nantes. ...
• He continued training with the Field Security Police in Winchester, before being assigend to the War Office as an artist and eventually gaining a commission in the Special Operations Executive. ...

• Security Advisories .
• Many of the protocols used in the Internet do not provide any security. ...
• Some sites attempt to use firewalls to solve their network security problems. ...
• Kerberos was created by MIT as a solution to these network security problems. ...
• In summary, Kerberos is a solution to your network security problems. ...

• Prestige 652H-31 (ADSL security router) .
• Security Issues for Remote IT Delivery .
• Managing Passwords Without Compromising Security .

•   About > Computing & Technology > Internet/Network Security .
• Internet/Network Security.
• · Free Computer Security Class.
• Security Blogs.
• General Security.
• Security FAQ.
• Wireless Security.
• Email Security.
• Mac Security.
• Linux Security.
• Security Showdown: Linux Vs. ...
• Security Showdown: Linux vs. ...
• Vulnerability scanning can be a key part of ensuring the continued security of your network. ...
• Threats To Corporate Security.
• Security expert Douglas Schweitzer, author of Incident Response, has written a feature article for Processor. com which talks about the state of corporate security and what are the primary threats to maintaining a secure corporate network. ... I think network and security administrators will find this informative and helpful. Threats To Corporate Security.

• In finance, fungible refers to the ability of one security to be easily converted into another related security. ...

• Increase SECURITY.
• Tripwire Change Monitoring and Reporting solutions establish the foundation for stable IT operations and systems security. ...
• " - Christofer Hoff, WesCorp Director of Information Security .
• 2004 - Part 2: What it takes to be the best in security and IT operations More >>.
• Tripwire for Servers Wins SC Magazine's "Best Network Security" Award.

• Security Audits Assess your system or network using the most comprehensive vulnerability scanner available. ...
• Examine your system with a comprehensive suite of 2032 vulnerability tests to learn if your system's security is at risk. ...
• Security News .
• Microsoft's high-risk security strategy.
•  Security News Archive: .
• Find out the server type, response time, site history as well as security protocol, cipher info and certifcate data for SSL sites. ...
• Security Audits | Network Monitoring | Site Analyzer | Software Release Monitor .

• Security scanning.
• Products > GFI MailSecurity > GFI Email Security Testing Zone.
• Test the security of your email system! .
• This test examines whether your system accepts an attachment with no filename containing executable code that can bypass content checking security solutions. ...
• Check here to receive GFI's security newsletter, containing Email Security Testing Zone updates and other security-related news.
• Warning: By clicking the "Test my email system!" button, you agree to receive the email tests you have requested and you also agree to hold GFI Software Ltd blameless and free of any liability for anything that happens as a result of using the GFI Email Security Testing Zone.

• On July 16, 2001 after giving a presentation called "eBooks Security -- Theory and Practice" at the DEF CON convention in Las Vegas, Nevada, he was arrested by the FBI as he was about to return to Moscow, Russia. ...

• MessageLabs is the global leader in managed email security. ...
• Security Within (TM) - Configuration based Security Good IT security practice requires more than anti-virus and firewall systems. ...
• AnalysisWhat Sin City Can Teach Tom RidgeLas Vegas is the most vigilant user of advanced surveillance, id, background-checking and security technologies. ...
• Volunteer Security Pros Launch Free Vulnerability Database.
• Industry Urges Tech Security Upgrades.
• Gates Issues Security Progress Report to Microsoft Customers.
• 4/20 - Know Who's on Your Network: Trust & Identity Security Solutions with Frank Derfler. ...
• 4/28 - Intrusion Prevention Solutions: The Next Wave in Security with Peter Coffee. Sponsored by McAfee Security. ...
• Thin Clients: A Cost-Effective Way to Improve Security .
•   Free Security Patch Management Software - Shavlik HFNetChkPro! .
• Intrusion Prevention Solutions: The Next Wave In Security.

Do you have a great site about Security? Is your Security site listed here? Would you like a prefered placement of your site in this directory?

It's easy! First place, the HTML from the box below on your page that you would like listed in this directory.

Then use our link submission request with your name, your contact information, and the URL of your site that has a link to this directory. After we verify your link to us, we'll make sure your site stays in our directory, and we'll give it prefered placement here also.

Here is how to make a simple text link to us. Just copy the code in this box to your website:

We can also develop a custom Guide To The Internet for your site. Please request your own custom Guide To The Internet.