Latest Story

Is It Possible to Securely Erase SSD? Maybe..

April 24, 2014
By
Is It Possible to Securely Erase SSD? Maybe..

Up to this point the idea of successfully bleaching your SSD has been an imperfect art. Due to technologies designed to make SSDs last longer (e.g., wear leveling), securely erasing all content is pretty much near impossible. And traditional wiping techniques (e.g., Darik’s Boot and Nuke) can not be used since they drastically shorten the...
Read more »

Bolstering Security with a Little Obscurity

April 24, 2014
By
Bolstering Security with a Little Obscurity

Following up on an early 2013 post we came across another interesting article emphasizing the benefits of security-through-obscurity. The article starts with a description of Kerckhoff’s principle (“a cryptosystem should remain secure even if the attacker knows exactly how the system works”) and then...
Read more »

NIST Issues Draft of Updated RNG Guidance … Sans Flawed Dual_EC_DRBG Algorithm

April 23, 2014
By
NIST Issues Draft of Updated RNG Guidance … Sans Flawed Dual_EC_DRBG Algorithm

In the wake of concerns over potential NSA tampering with NIST’s random number generator guidance, the standards organization has released the first updated draft of Special Publication 800-90A Revision 1, titled “Recommendation for Random Number Generation Using Deterministic Random Bit Generators.” The most notable change...
Read more »

Job: Senior Software Security Engineer in Washington, DC

April 22, 2014
By
Job: Senior Software Security Engineer in Washington, DC

Blackboard is hiring a Senior Software Analyst Engineer to join their team. If you enjoy contributing to open source projects, analyzing the security of applications and services through Threat Modeling, discovering and addressing security issues, collaborating with customers and employees worldwide, assessing designs against relevant security threats, this position...
Read more »

Job: Security Analyst in Washington, DC

April 21, 2014
By
Job: Security Analyst in Washington, DC

AARP is looking to hire a security analyst to provide support for the development and management of their network and IT security architecture, including the security management and configuration of related hardware, software and network. The analyst will collaborate with colleagues in Technology Service Management (TSM)...
Read more »

Where You Want to Be This Week for 4-21-2014

April 20, 2014
By
Where You Want to Be This Week for 4-21-2014

Where do you want to be this week? Now you’ll always know with our “Where You Want to Be This Week” feature, which will tell you about infosec meetups happening in your local area as of Sunday night. If you would like your event listed in...
Read more »

Weekly Rewind – SOC Analyst Skills, TrueCrypt, QOTD & More…

April 17, 2014
By
Weekly Rewind – SOC Analyst Skills, TrueCrypt, QOTD & More…

Welcome to another edition of our Weekly Rewind – where we summarize all our posts from the last week. The top stories this week were 3) “QOTD: A Bad Career Choice in Security Would Be Learning Just the Big Vendor Tools”, 2) “No Major...
Read more »


About Us

Founded in 2008, NoVA Infosec is dedicated to the community of Metro DC-based security professionals and whitehat hackers involved in the government and other regulated verticals. Find out more on our About Us page.