Category Archives: Process

Microsoft Security Compliance Manager: Now available!

Posted on 09/04/2010 by Roger

I recently blogged about the Beta version of our Security Compliance Manger, helping you to manage the security baselines in your organization. There are some screenshots in the corresponding post: Making the Management of Security Compliance Easier! Now, we released … Continue reading →

Posted in Microsoft, Process, Products, Security, Strategy | Tagged Compliance, Policies, Risk Assessment | Leave a comment

Council of Europe – Octopus Conference (Cooperation against Cybercrime) Day 2

Posted on 24/03/2010 by Roger

And the second day starts. I just met with Jeremy Kirk from IDG and it is great to see that the press is actually interested in such a conference as well. The day today started with a long session on … Continue reading →

Posted in Government, Law Enforcement, Legislation, People, Policy, Process, Security | Tagged Cloud, Crime, Critical Infrastructure, Cybercrime, Government, Law Enforcement, Legislation | Leave a comment

Results of Operation b49 (Botnet Takedown)

Posted on 20/03/2010 by Roger

On February 24th we announced the work we did on taking down Waledac – read Tim Cranton’s blog post called Cracking Down on Botnets. Now it is time to look back and try to understand what we learned so far. … Continue reading →

Posted in Crime, Cybercrime, Law Enforcement, Microsoft, Partner, Process, Strategy, Trends | Tagged Botnet, Collaboration, Crime, Ecosystem, Government, Law Enforcement, Malware | Leave a comment

Hacking Incidents 2009 – Interesting Data

Posted on 12/03/2010 by Roger

There is a project called the web hacking incident database (WHID), which collects data and statistics on web-application related security incidents. I was just looking into their report called The Web Hacking Incident Database 2009 which has some pretty interesting … Continue reading →

Posted in Crime, Cybercrime, Incidents, Industry, Process, Trends | Tagged Crime, Cybercrime, Hacking, Incidents | Leave a comment

Legal Challenges of International Business and the Cloud

Posted on 09/03/2010 by Roger

To start with: I am an engineer not a lawyer – and this might be part of the problem… When I started to think about the Cloud and security and thought about all the work I do with Law Enforcement … Continue reading →

Posted in Crime, Cybercrime, Government, Law Enforcement, Legislation, Microsoft, Privacy, Process, Processes, Security, Strategy | Tagged Behavior, Citizens, Cloud, Collaboration, Crime, Government, International, Internet, Jurisdiction, Law Enforcement, Legislation, MLAT, Policy Makers, Privacy | Leave a comment

Security Development Lifecycle – Website!

Posted on 08/03/2010 by Roger

I often talk about how we learned to engineer security into the products and the results prove that we are on the right track. One of the challenges we always have is how to help the ecosystem to improve as … Continue reading →

Posted in Microsoft, Process, Processes, Security | Tagged Development Lifecycle, Ecosystem, News, Threat Modeling | Leave a comment

Questions to Ask your (Security) Vendor

Posted on 01/12/2009 by Roger

You know that I am a big fan of Security Development Lifecycles as we run it internally to build code which is more resilient against attacks. And I recently blogged on Security – A Feature Discussion? Some Thoughts on Google’s … Continue reading →

Posted in General, Process, Trends | Leave a comment

Security and Usability

Posted on 26/11/2009 by Roger

It is not a new concept: The secure way is only secure if it is the easiest way. I have seen a lot of solutions which are extremely secure – in the eyes of the security people. However, the users … Continue reading →

Posted in People, Policy, Process, Security | Leave a comment

Software Piracy – A Threat to Security!

Posted on 14/10/2009 by Roger

Beginning of this year, I tried to understand, whether we can show a collaboration between Piracy (stolen software) and Malware Infections. I played a little bit with the data I had available and came to the conclusion, that there most … Continue reading →

Posted in Piracy, Process | Leave a comment

Monitoring – a Key Activity to a Trustworthy Infrastructure?

Posted on 11/08/2009 by Roger

As you might have read, I recently blogged about my infrastructure and the future of a platform towards a better management of compliance. I wrote about Deploying PKI Time Sync on Virtual DCs Patch Management, a key step towards compliance! … Continue reading →

Posted in Process, Products, Technology | Leave a comment

Search for:
Popular Posts
- Do We Really Want Privacy? 2 comment(s)
- About 0 comment(s)
- The Risk of Blogging 0 comment(s)
- The Future of Cybercrime 0 comment(s)
- The Importance of Application Security 0 comment(s)
September 2010

M T W T F S S

« Aug

1 2 3 4 5

6 7 8 9 10 11 12

13 14 15 16 17 18 19

20 21 22 23 24 25 26

27 28 29 30
Users and Hits
My Trips

September 2010
M	T	W	T	F	S	S
« Aug
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30

Category Archives: Process

Popular Posts

Users and Hits

My Trips

Tags

Archives