Control "Monitoring" is Not Threat Monitoring
As I write this post I’m reminded of General Hayden’s advice: “Cyber” is difficult to understand, so be charitable with those who don’t understand it, as well as those who claim “expertise.” It’s important to remember that plenty of people are trying to act in a positive manner to defend important assets, so in that spirit I offer the following commentary. Thanks to John Bambanek’s SANS post I read NIST Drafts Cybersecurity Guidance by InformationWeek’s J. Nicholas…
Related Videos from Youtube
AFCERT circa 2000...This video shows the United States Air Force Computer Emergency Response Team (AFCERT) in 2000. Kelly AFB, Security Hill, and Air Intelligence Agency appear. The colonel who leads the camera crew into room 215 is James Massaro, then commander of the Air Force Information Warfare Center. The old Web-based interface to the Automated Security Incident Measurement (ASIM) sensor is shown, along with a demo of the "TCP reset" capability to terminate TCP-based sessions. We have a classic quote about a "digital Pearl Harbor" from Winn Schwartau, "the nation's top information security analyst." Hilarious, although Winn nails the attribution and national leadership problems; note also the references to terrorists in this pre-9/11 video. "Stop the technology madness!" Incidentally, if the programs shown were "highly classified," they wouldn't be in this video!
Black hat Is BACK! Black-hat affili...
|
oneraindrop (gunnar peterson) : RT @owasp_podcast: OWASP Podcast #61 - an interview with @taosecurity (Richard Bejtlich) from GE - is now live! http://www.owasp.org/index.p.. Updated : 2010-03-10T17:33:32Z | Reply | View Tweet |
|
0x58 (Xavier Santolaria) : RT @OWASP_podcast: Podcast #61 - iview with @taosecurity (Richard Bejtlich) from GE - is now live! http://bit.ly/bGk7Ph.. Updated : 2010-03-10T16:44:40Z | Reply | View Tweet |
|
pcapr (pcapr) : RT @tomwparker: Nice post by @taosecurity on pcapr. Great to see my old friends at @mudynamics getting more traction with researchers http:/.. Updated : 2010-03-10T16:35:00Z | Reply | View Tweet |
|
Iglobalcast (IGlobalcast.com) : TaoSecurity: Bejtlich OWASP Podcast Posted: Richard Bejtlich's blog on digital security and the practices of netwo... http://bit.ly/9Afo1d.. Updated : 2010-03-10T16:01:19Z | Reply | View Tweet |
|
cybfor (Cyber Informant) : Bejtlich OWASP Podcast Posted: [taosecurity.blogspot.com] My appearance on OWASP Podcast 61 is available. The .mp3 is... http://dlvr.it/98QB.. Updated : 2010-03-10T15:53:16Z | Reply | View Tweet |
-
OpenPacket.org 1.0 Is Live
[Security]The mission of OpenPacket.org is to provide quality network traffic traces to researchers, analysts, and other members of the digital security community. One of the most difficult problems facing researchers, analysts, and others is understanding traffic carried by networks.
-
Chinese Hack France
[Security]The news is coming in that France was the latest victim of the Chinese hackers, following the recent announcements of United States and United Kingdom being compromised.
-
Thanks for the Memories Sys Admin Magazine
[Linux/Unix]Thanks for the Memories Sys Admin Magazine...
-
Black Hat USA 2007 Round-Up Part 1 and 2
[Security]I'm waiting in the airport for my flight home after spending 6 days in Las Vegas at Black Hat USA 2007. I last attended in 2003. Put simply I was blown away by the quality of the majority of the talks I saw. I'll summarize the talks and my response.
-
US Air Force now fights in air, space, and cyberspace.
[Security]The Air Force believes it must be able to control cyberspace, when need be, as it at times controls the air. The goal is to make cyberspace capabilities fully available to commanders. --Via TaoSecurity.
