eWeek - RSS Feeds

Gartner Revises Server Share Numbers
Thu, 03 Jul 2008 18:43:24 -0400
Gartner revised its first quarter numbers and found that IBM actually beat out Hewlett-Packard in server revenue....
Who Is Running The Most Secure Browser?
Thu, 03 Jul 2008 14:03:13 -0400
Many users are undoubtedly not updating their browsers as quickly as they should, but you can't conclude any specifics about that from the recent study of Google logs....
DOJ Sued Over Cell Phone Tracking Practices
Wed, 02 Jul 2008 17:08:34 -0400
Civil liberties groups claim the Justice Department is bypassing warrants to obtain real-time tracking information on U.S. citizens....
Microsoft Internet Explorer Security Strikes Back
Wed, 02 Jul 2008 17:03:53 -0400
Microsoft Internet Explorer 8 Beta 2 security builds on the Phishing Filter of IE 7 and thwarts cross-site scripting....
IBM Helps Link POS to the Back Office
Wed, 02 Jul 2008 16:50:30 -0400
IBM and Epicor jointly release an offering that centrally manages and supports POS....

The Seattle Times: Business & Technology

Pack the plastic; Alaska Airlines goes cashless
Thu, 03 Jul 2008 22:17:17 -0700
Alaska Airlines will no longer accept cash for in-flight purchases.
Pocket Armrest seeks to become the next neck pillow
Thu, 03 Jul 2008 22:09:44 -0700
Serial entrepreneur Matt Mostad, of Kenmore, comes up with an idea for traveler's aide while sitting in a cramped airplane seat.
Chevrolet may introduce a mini to U.S.
Thu, 03 Jul 2008 22:12:00 -0700
General Motors is considering a new Chevrolet minicar for the U.S. as it reworks its product lineup to cope with a dramatic shift from trucks to cars that is linked to high gas prices, a spokesman said Thursday.

NYT > Technology

Bits: Google Puts Privacy Link on Main Page
Fri, 04 Jul 2008 18:08:11 -0000
The move brings Google into clear compliance with a California law that requires many Internet sites to have a link to their privacy policy on their home page.
Google Told to Turn Over User Data of YouTube
Fri, 04 Jul 2008 04:30:23 -0000
The order raised concerns that the online video viewing habits of tens of millions of people could be exposed.
Bits: What Is Facebook Worth? (Part 37)
Fri, 04 Jul 2008 15:43:10 -0000
A document in the settled Facebook ConnectU litigation reveals that Facebook’s common shares are worth a quarter of the value of the stock Microsoft purchased when it invested in the social network.

CNN.com - Technology

Stealing ideas from nature
Fri, 04 Jul 2008 10:01:21 -0400
When self-confessed "nature nerd" Janine Benyus coined the term "biomimicry" in a book she published a decade ago, little did she know it would make her a household name, rubbing shoulders with Hollywood stars.
Faked tiger photo sparks Web furor
Fri, 04 Jul 2008 14:23:49 -0400
Read full story for latest details.
Tunguska blast still a mystery 100 years on
Fri, 04 Jul 2008 10:17:51 -0400
It produced a blast hundreds of times stronger than the Hiroshima bomb, was seen hundreds of miles away and narrowly missed obliterating an entire city -- but 100 years to the week after the mysterious explosion in Siberia, no one is any closer to understanding what caused it.

NPR Topics: Technology

We Know What You've Been Watching on YouTube
Fri, 04 Jul 2008 13:13:00 -0400
A court has ordered Google to turn over a database that links users to every video they've watched on the popular Web site YouTube. Jennifer Urban, director of the University of Southern California Intellectual Property and Technology Law Clinic, says the ruling has big implications for online privacy.
Twitter, What Are You Doing? Co-Founder Tells All
Thu, 03 Jul 2008 10:51:00 -0400
Twitter.com has so many new users that the Web site keeps crashing. Meanwhile, Twitter engineers are taking popular features away for retooling. It's a painful process, but co-founder Biz Stone has a plan.
Free Speech In China? Text Me
Wed, 02 Jul 2008 17:21:00 -0400
Hundreds of millions of people in China have cell phones, and with no voice mail, many turn to text messaging to make sure their messages get conveyed. Texting remains one of the few outlets for free speech in a country notorious for its censorship practices.

BBC News | Technology | UK Edition

Google 'faces Street View block'
Fri, 04 Jul 2008 07:56:34 -0000
Google's plans to launch a mapping tool in the UK could be referred to the Information Commissioner.
Warning letters to 'file-sharers'
Thu, 03 Jul 2008 17:41:04 -0000
The music industry says thousands of UK broadband users who share tracks illegally will be warned about it in letters.
Google must divulge YouTube log
Thu, 03 Jul 2008 20:19:53 -0000
Google must divulge the viewing habits of every user who has ever watched avideo on YouTube, says a US court.

Reuters Video: Technology

Japan asks: anybody out there?
Fri, 04 Jul 2008 12:02:00 -0400
Jul. 4 - Japan's biggest astronomical observatories are teaming up for a fresh quest to find out if there is life in outer space.
Reuters Technology Week
Thu, 03 Jul 2008 19:52:38 -0400
Jul. 3 - The robo-bartender, virtual haute couture, and global leaders ride hydrogen style.
Robo barman pulls first pint
Thu, 03 Jul 2008 09:03:25 -0400
Jul. 3 - Billed as the world's first robot barman, Mr Asahi pulls the crowds at London's Selfridges department store.

AP Top Technology News At 6:44 p.m. EDT

Court orders YouTube to give Viacom video logs
By ANICK JESDANUN Fri, 04 Jul 2008 11:52:13 -0000
NEW YORK (AP) -- Dismissing privacy concerns, a federal judge overseeing a $1 billion copyright-infringement lawsuit against YouTube has ordered the popular online video-sharing service to disclose who watches which video clips and when....
2 teens attacked in town mocked in YouTube videos
Fri, 04 Jul 2008 22:44:12 -0000
DOVER, N.Y. (AP) -- Two teenagers who drove to Oniontown after a series of YouTube videos portrayed the hamlet as a run-down, backwoods dump were pelted with rocks by an angry group of young residents, authorities said....
Internet addressing agency loses its own addresses
Thu, 03 Jul 2008 20:57:41 -0000
NEW YORK (AP) -- This doesn't sound good: The nonprofit agency in charge of the Internet's addresses recently lost track of its own....

CNET News.com

Ask.com closes Dictionary.com deal
Fri, 04 Jul 2008 14:52:00 -0700
Fourth-ranked search engine completes its acquisition of the parent company of Dictionary.com, Thesaurus.com, and Reference.com.
1 euro eBay baby goes home
Fri, 04 Jul 2008 13:37:00 -0700
Parents had put their baby boy up for sale on eBay--apparently as a joke--but German authorities didn't find it particularly amusing.
VeriSign names interim CEO
Fri, 04 Jul 2008 12:02:00 -0700
Company's founder takes the place of the CEO and president, who resigned abruptly earlier this week.

 

Subscribe to Computers RSS feed

Acceptable Use Policy Report - A report on Acceptable Usage Policy: what corporations expect of it, a case study, and a framework for creating your own policy.

404 Aelita Enterprise Directory Manager - Secure Rules and Roles management platform that facilitates secure Exchange and Active Directory administration.

AmiWall.org - Proxy based system to aid in implementing employee internet use policies.

An Overview of Corporate Computer User Policy - Article discusses the elements of a corporate security policy, which it calls the gateway to a company`s intellectual property. The main threat to information security within a company is its employees.
Meta Description: [ The SANS Institute, offering computer security training for system administrators, computer security professionals, and network administrators, is a cooperative research and education organization that has many consensus projects to return computer security information to the community. ]

Best Practices in Network Security - Knowing how and what to protect and what controls to put in place is difficult. It takes security management, including planning, policy development and the design of procedures.

Browsing with a Loaded Gun - A strong web Security Policy is key to keeping your company safe in the net-centric world. (PDF format)
Meta Description: [ With NetIQ, you know. Your enterprise is secure, compliant, available and performing. ]

Building and Implementing a Successful Information Security Policy - White paper providing the reader with new and innovative aspects on the process of building a Security Policy, as well as managing a Security Awareness Program.

Building Effective, Tailored Information Security Policy - 20th NISSC Internet Technical Security Policy Panel

Canada's Export Controls - Unofficial / unverified article describing Canada's export controls on cryptographic software.

404 CERT Practice Modules: Improving Security - Determine contractor ability to comply with your organization's security policy.

404 CERT Practice Modules: Responding to Intrusions - Establish policies and procedures for responding to intrusions.

404 CERT Practice Modules: Securing Desktop Workstations - Develop and promulgate an acceptable use policy for workstations.

500 CobiT User Group - International user group and hub for CobiT, the emerging IT control and security methodology.
Meta Description: [ THE CONTROLIT USER GROUP - Dedicated to Supporting COBIT ™ Users ]

Common Criteria Evaluation and Validation Scheme - The US government agency overseeing the Common Criteria security certification Program
Meta Description: [ NIAP CCEVS is an activity jointly managed by the NIST AND NSA, and whose focus is to establish a national program for the evaluation of information technology products for conformance to the International Common Criteria for Information Technology Security Evaluation. ]

500 Computer and Information Security Policy - Formal IT security policy helps establish standards for IT resource protection by assigning program management responsibilities and providing basic rules, guidelines, and definitions for everyone in the organization. Policy thus helps prevent inconsistencies that can introduce risks, and policy serves as a basis for the enforcement of more detailed rules and procedures.
Meta Description: [ Draft paper for NIST Computer Security Handbook. ]

Create Order with a Strong Policy - A well-written, well-run security policy prevents cracks from appearing in your network's foundation.
Meta Description: [ A well-written, well-run security policy keeps cracks from appearing in your network's foundation. ]

404 Developing an Information Security Strategy - This whitepaper describes the steps needed to develop an organization-wide information security strategy.

Do you have an intrusion detection response plan? - Discussion of what should go into the creation of an intrusion detection plan and the expected results.

E-Policy - E-policy is a corporate statement and set-of-rules to protect the organization from casual or intentional abuse that could result in the release of sensitive information, IT system failures or litigation against the organization by employees or other parties.

Formulating a Wireless LAN Security Policy: Relevant Issues, Considerations and Implications - [Word Document] This paper represents the security issues related to the use of wireless (vs wired) LAN technology and recommends a number of key implementation guidelines to ensure the secure deployment of wireless LAN services in the company.

GASSP Home Page - Generally Accepted System Security Principles, developed by The International Information Security Foundation.

404 How to Develop a Network Security Policy White Paper - This document is for business executives, and others, who want to know more about Internet and internetworking security, and what measures you can take to protect your site.

How to Develop Good Security Policies and Tips on Assessment and Enforcement - [Word Document] Invest the time up front to carefully develop sound policies and then identify ways to gauge their effectiveness and assess the level of compliance within your organization. Commit to spending the time and resources required to ensure that the policies are kept current and accurately reflect your company's security posture.

IASEP Data Security Protocol - An archive website from the Purdue Research Foundation, containing a range of example security policy sets.

Information Security Policies - Make and manage security policies. Run awareness programs with audits and e-learning to build a human firewall.
Meta Description: [ Neupart: Information Security Management and Awareness; Solutions and Services; Based on standards. ]

Information Security Program Development - Security standards are needed by organizations because of the amount of information, the value of the information, and ease with which the information can be manipulated or moved.

Institute for Security and Open Methodologies (ISECOM) - Non-profit, international research initiative dedicated to defining standards in security testing and business integrity testing.

500 Internet Security Policy: A Technical Guide - Contents - This document is intended to help an organization create a coherent Internet-specific information security policy.
Meta Description: [ WindowSecurity.com provides Windows security news, articles, tutorials, software listings and reviews for information security professionals covering topics such as firewalls, viruses, intrusion detection and other security topics. ]

Internet/Network Security Policy Development - How to write an effective network security policy. This is Part 4 of a 5 part tutorial on Internet and network security.
Meta Description: [ Previous articles about Network and Internet security issues, resources, tools, vulnerabilites and reviews on Microsoft Windows, Unix, Linux, and Mac systems ]

IT Security Cookbook - An excellent guide to computer network security with a strong focus on writing and implementing security policy. This is primarily for security managers and system administrators.
Meta Description: [ Comprehensive online book including: Computer/Network security, Internet, Risk analysis, UNIX, NT, Encryption, ITSEC ]

ITworld.com - Security's human side - IT World article - essentially a review of Pentasafe's VigilEnt security policy management product.
Meta Description: [ When it comes to keeping your company's systems secure, employees and managers play roles as important as those of the technological gadgets they deploy. ]

Make Your Web Site P3P Compliant - How to create and publish your company's platform for privacy performance policy, a W3C initiative, in 6 steps.

Network Security - Internet Security for the Enterprise - Information hub for the enterprise discussing network security, storage compliance, CRM, and human resource.
Meta Description: [ Info Tech Live provides Internet and technology news to IT professionals looking for IT industry specific information and products on Internet Security, Storage Technology, CRM, Content Management and Mobile Computing with advises, opinions and white papers from experts. ]

OSSTMM: Open Source Security Testing Methodology Manual - A widely used, peer-reviewed, comprehensive methodology for performing security tests.

P3P Guiding Principles - Principles behind the W3C Platform for Privacy Preferences initiative.

PKI Policy Whitepaper - Provides general information about PKI policy, the role that policy plays in a PKI and how that policy applies to both traditional and PKI-enabled business environments.

Policy Over Policing - InfoWorld article - It's easy to develop e-mail and Internet policies, but education and documentation are crucial to their success.

RFC2196 (Site Security Handbook) - a guide to developing computer security policies and procedures for sites that have systems on the Internet. Published 1997.

SANS InfoSec Reading Room - Articles on security policy and other information security topics.
Meta Description: [ The SANS Institute, offering computer security training for system administrators, computer security professionals, and network administrators, is a cooperative research and education organization that has many consensus projects to return computer security information to the community. ]

SecureZone - Information portal with focus on policies, protocols and standards
Meta Description: [ The SecureZone Directory. Information, resources, tools and more. ]

SecurityDocs - A substantial collection of papers and articles on the development and implementation of security policies.
Meta Description: [ Directory of information security articles, white papers, and documents ]

500 Site Security Policy Development - This paper outlines some issues that the writer of a Site Computer Security Policy may need to consider when formulating such a document.
Meta Description: [ Australian CERT recommendations. ]

404 Structured Approach to Computer Security - A security policy is a set of rules written in general terms stating what is permitted and what is not permitted in a system during normal operation.

The Basics of an IT Security Policy - This paper is intended to address the importance of having a written and enforceable Information Technology (IT) security policy, and to provide an overview of the necessary components of an effective policy.

The Information Security Forum - It has produced the standard to provide guidelines on all aspects of information security including IT, data, and computer controls.
Meta Description: [ The Information Security Forum has produced the Standard to provide guidelines on all aspects of information security including, IT, Data and Computer controls. The Forum's Standard, drawn from best practices, in-depth research and national, European and International standards, helps organisatio... ]

U.S. Department of Health and Human Services - Security standards, transactions and code set standards, identifier standards, mailing lists, implementation guides, and administrative simplification.
Meta Description: [ Funding opportunities in the Office of the Assistant Secretary for Planning & Evaluation in the Department Health & Human Services. ]

Understanding the Virus Threat and Developing Effective Anti-Virus Policy - This paper focuses on providing the reader with an overview of the current virus landscape and aids in developing best practice anti-virus policies.
Meta Description: [ The SANS Institute, offering computer security training for system administrators, computer security professionals, and network administrators, is a cooperative research and education organization that has many consensus projects to return computer security information to the community. ]

What makes a good security policy and why is one necessary? - Security does not come from automated applications, rather it is compromised of security applications or systems, processes and procedures and the personnel to implement both the systems and processes. In order to properly address security, the most fundamental item necessary is a security policy.

What's Your Policy? - If your company doesn't have written security policies, it's time it did, and Mark Edwards has some resources to help.
Meta Description: [ If your company doesn't have written security policies, it's time it did, and Mark Edwards has some resources to help. ]

404 Why Security Policies Fail - Objective analysis reveals that many breaches are linked to common weaknesses in the security policy...accidents waiting to happen. This article focuses on strategic and systematic weaknesses that can slowly degrade security operations.
Meta Description: [ SecurityFocus is designed to facilitate discussion on computer security related topics, create computer security awareness, and to provide the Internet's largest and most comprehensive database of computer security knowledge and resources to the public. It also hosts the BUGTRAQ mailing list. ]

Windows 2000 Group Policy and Security - The use of Group Policy to simplify the network security tasks that you face as a network administrator. With Group Policy, you can ensure that the machines on your network remain in a secure configuration after you deploy them.
Meta Description: [ Robert McIntosh discusses Group Policy and how you can use it to ensure that the machines on your network remain in a secure configuration after you deploy them. ]

Windows IT LIbrary - This paper offers wide ranging advice on the development and implementation of security policies.
Meta Description: [ , In this chapter, we look at some ways to create and enforce security policies for your network. I give you a sample Security Manual, a starting point for a Disaster Recovery Plan, and an outline for a Network Documentation Plan. Finally, we look at what you should do if you experience some kind... ]