Spire Security Viewpoint
Home
November 22, 2006
Spire Security Top 1 Security Problem
Everything.
Darn.
Somebody beat me to it.
Nov 22, 2006 8:15:10 PM
NEXT POST
Security Metrics Revisited
Lots of talk about security metrics in the blogosphere. Since I just got done "breaking all the (unofficial) rules" about security metrics in my one day metrics class, I feel compelled to comment. Mike Rothman at Security Incite re-initiated the (security part) of the conversation by pointing to "Joel on Software" and suggesting that metrics are bad because you can game them. I think he can be swayed to the pro-metrics side of the house, but only time will tell. He (and Joel) is/are right that metrics can be gamed - my biggest "metric" pet peeve is when my kids'...
PREVIOUS POST
Is there an "Anti-TSA" Endgame?
Lots of criticism this week from the very-vocal minority of folks who oppose the work that the TSA is doing. To date, critics suggest that the TSA shouldn't be 1) attempting to authenticate identities; 2) using a no-fly list; 3) searching passenger bags; 4) monitoring behavior. (Not sure whether critics support other measures like guns in the cockpit or marshals on the plane.) It has made me wonder if there has ever been a single constructive recommendation from any of the criticizers about "What the TSA Should Do" to prevent/detect or otherwise protect against the risks associated with terrorists and...
I'm a guy with some ideas and opinions.
1
Following
0
Followers
Search
Recent Comments
Account Deleted:
Great inof... thanks for the effort in explaini...
|
more »
On
Microsoft's SDL has Saved the World!!
Fre Ek:
Love the computer humor, from Dilbert to this p...
|
more »
On
*[Adjective] Computer Worm [verb] Internet*
Account Deleted:
Sağlık So funny. I guess that every press relea...
|
more »
On
*[Adjective] Computer Worm [verb] Internet*
SANS Top 20 has been a joke since 2003.
I refer you to an article I wrote in 2003, that sadly is only available via the wayback machine.
http://web.archive.org/web/20051119141556/http://securitygeeks.shmoo.com/sans_top_20.html
Posted by: Brian | November 25, 2006 at 12:04 PM