Security

From The Internet Security Alliance Media Alert: Internet Security Alliance President to Testify at U.S. Senate Judiciary Subcommittee Hearing Larry Clinton, president of the Internet Security Alliance (ISA), will testify tomorrow at a U.S. Senate Judiciary Terrorism and Homeland Security Subcommittee hearing titled, “Cybersecurity: Preventing Terrorist Attacks and Protecting Privacy in Cyberspace.” Clinton’s testimony will focus on how economics plays into overall cybersecurity, and will emphasize the need to make cybersecurity economically feasible at the individual, corporate and government levels. Who: ISA President Larry Clinton What: Testifying at U.S. Senate Judiciary Terrorism and Homeland Security Subcommittee hearing When: Tuesday, November 17, 2009 at 10 ... Read Full Story

From The Internet Security Alliance Who: The Internet Security Alliance (ISA) What: The ISA will release a new cybersecurity report, which proposes frameworks for taking key issues in the Obama Administration’s “Cyberspace Policy Review” document to the next level, in an effort to achieve tangible progress. The report will include frameworks for creating a new, practical model for information sharing; addressing the international nature of cybersecurity issues; developing a market for adopting good security standards and practices; building a highly educated digital workforce; and managing the global IT supply chain, among other things. Why: As the Obama Administration continues its encouraging work on cybersecurity ... Read Full Story

From The Internet Security Alliance Internet Security Alliance (ISA) President Larry Clinton will describe the progress being made in the joint ANSI/ISA project to develop an enterprise wide cybersecurity framework Wednesday afternoon at the 8th Plenary of the Homeland Security Standards Panel in Washington DC. Two years ago, DHS Assistant Secretary for Cybersecurity Gregory Garcia charged ISA and ANSI to jointly develop a program that would assist the private sector in appreciating the economic impacts of cyber events throughout the enterprise. President Obama’s Cyber Space Policy Review emphasized that point again and just last week at a briefing before the House Homeland Security Committee ... Read Full Story

The Evil Maid Attack is an attack type against whole system disk encryption in a form of a small bootable USB stick image that allows to perform the attack in an easy “plug-and-play” way. The whole infection process takes about 1 minute, and it’s well suited to be used by hotel maids. The Invisible Things blog goes into great detail on how most whole disk encryption is vulnerable in a relatively simple way. The scenario we consider is when somebody left an encrypted laptop e.g. in a hotel room. Let’s assume the laptop uses full disk encryption like e.g. this provided by TrueCrypt or ... Read Full Story

From The Internet Security Alliance ISA to BRIEF MULTIPLE GOVERNMENT AGENCIES ON CYBERSECURITY Internet Security Alliance President Larry Clinton will serve as one of three private sector briefers at a unique senior level pan-government briefing on cyber security Friday, October 16 from 10:00am to noon. The briefing is being organized by Representative Yvette D. Clarke, Chairwoman of the Subcommittee on Emerging Threats, Cybersecurity, and Science and Technology and will be held in the Longworth House Office Building Room 1539. Chairwoman Clarke will be joined by Rep. Bart Gordon, Chairman of the House Committee on Science and Technology, Rep. Daniel Lipinski, Chairman of the House ... Read Full Story