News

US DoJ China Charges, a Small Formality in Something Much Bigger

May 19, 2014
By
Eric Holder

You have probably already read about US Department of Justice (DoJ) Attorney General Eric Holder formally charging five Chinese military persons of economic espionage against Westinghouse, SolarWorld, U.S. Steel, ATI, USW, and Alcoa. Many in the industry and beyond find this accusation absolutely absurd given the current allegations against the US. We are accusing them of...
Read more »

Tags: ,
Posted in News | 5 Comments »

Where You Want to Be This Week for 5-12-2014

May 12, 2014
By
Where You Want to Be This Week for 5-12-2014

Where do you want to be this week? Now you’ll always know with our “Where You Want to Be This Week” feature, which will tell you about infosec meetups happening in your local area as of Sunday night. If you would like your event listed in our Calendar and in this post, let us know through our Submit Event form...
Read more »

Tags: , , , , ,
Posted in News | 2 Comments »

Weekly Rewind – Cyber Security, Information Security, Internet Infrastructure & More…

May 9, 2014
By
Weekly Rewind – Cyber Security, Information Security, Internet Infrastructure & More…

Welcome to another edition of our Weekly Rewind – where we summarize all our posts from the last week. The top stories this week were 3) “Internet Infrastructure in 5 Minutes”, 2) “6 Tips for Learning Information Security”, and 1) “Cybersecurity versus Information Security”. If you missed anything or happened to be offline, we...
Read more »

Tags: , , ,
Posted in News | 5 Comments »

US Gov Serving Warrants for Email on Irish Server

May 8, 2014
By
US Gov Serving Warrants for Email on Irish Server

Fascinating how we (the US government) are trying to serve warrants for data that is held on servers located in another country. Looks like the judges are redefining the term warrant, saying that warrants for online data are different from traditional warrants. Of course the company being served in this case, Microsoft, is going to...
Read more »

Tags: , , ,
Posted in News | 1 Comment »

Where You Want to Be This Week for 4-28-2014

April 28, 2014
By
Where You Want to Be This Week for 4-28-2014

Where do you want to be this week? Now you’ll always know with our “Where You Want to Be This Week” feature, which will tell you about infosec meetups happening in your local area as of Sunday night. If you would like your event listed in our Calendar and in this post, let us know through our Submit Event form...
Read more »

Tags: , , ,
Posted in News | 5 Comments »

Weekly Rewind – SSD, Security Obscurity, NIST & More…

April 25, 2014
By
Weekly Rewind – SSD, Security Obscurity, NIST & More…

Welcome to another edition of our Weekly Rewind – where we summarize all our posts from the last week. The top stories this week were 3) “NIST Issues Draft of Updated RNG Guidance…Sans Flawed Dual_EC_DRBG Algorithm”, 2) “Bolstering Security with a Little Obscurity”, and 1) “Is It Possible to Securely Erase SSD? Maybe…”. If...
Read more »

Tags: , ,
Posted in News | 6 Comments »

Is It Possible to Securely Erase SSD? Maybe..

April 24, 2014
By
Is It Possible to Securely Erase SSD? Maybe..

Up to this point the idea of successfully bleaching your SSD has been an imperfect art. Due to technologies designed to make SSDs last longer (e.g., wear leveling), securely erasing all content is pretty much near impossible. And traditional wiping techniques (e.g., Darik’s Boot and Nuke) can not be used since they drastically shorten the...
Read more »

Tags: , , ,
Posted in News | 6 Comments »

Bolstering Security with a Little Obscurity

April 24, 2014
By
Bolstering Security with a Little Obscurity

Following up on an early 2013 post we came across another interesting article emphasizing the benefits of security-through-obscurity. The article starts with a description of Kerckhoff’s principle (“a cryptosystem should remain secure even if the attacker knows exactly how the system works”) and then discusses why this academic theory may not always apply to...
Read more »

Tags: , ,
Posted in News | 1 Comment »

NIST Issues Draft of Updated RNG Guidance … Sans Flawed Dual_EC_DRBG Algorithm

April 23, 2014
By
NIST Issues Draft of Updated RNG Guidance … Sans Flawed Dual_EC_DRBG Algorithm

In the wake of concerns over potential NSA tampering with NIST’s random number generator guidance, the standards organization has released the first updated draft of Special Publication 800-90A Revision 1, titled “Recommendation for Random Number Generation Using Deterministic Random Bit Generators.” The most notable change is the lack of the controversial Dual_EC_DRBG algorithm. Nice to...
Read more »

Tags: , ,
Posted in News | 4 Comments »

Where You Want to Be This Week for 4-21-2014

April 20, 2014
By
Where You Want to Be This Week for 4-21-2014

Where do you want to be this week? Now you’ll always know with our “Where You Want to Be This Week” feature, which will tell you about infosec meetups happening in your local area as of Sunday night. If you would like your event listed in our Calendar and in this post, let us know through our Submit Event form...
Read more »

Tags: , , , ,
Posted in News | 2 Comments »


About Us

Founded in 2008, NoVA Infosec is dedicated to the community of Metro DC-based security professionals and whitehat hackers involved in the government and other regulated verticals. Find out more on our About Us page.