Welcome to another edition of our Weekly Rewind – where we summarize all our posts from the last week. The top stories this week were 3) “Could Sale of 0-Days Soon Become Illegal”, 2) “Trust RSA, the NSA & the…
Tag: rsa
Trust, RSA, the NSA & the Unknowns
In the security field trust is everything. And now RSA has lost that trust with recent revelations of them accepting a $10 million bribe from the NSA to make the flawed Dual Elliptic Curve random number generator the default in…
How to Keep Up with RSAC When Not at RSAC
One of the questions that often comes up for those not attending the annual shindig known as the RSA Conference (RSAC) is “How do I keep with everything going on at RSAC when I’m not there?” I was wondering the…
ISC2’s GISWS Right in Time for RSA Conference
For the sixth straight year (ISC)2 has released its Global Information Security Workforce Study (GISWS) based on surveys completed by over 12,000 security professionals. As expected the big take-away is that there is a huge shortage of information security professionals,…
Surviving RSA & BSidesSF
Unfortunately, we won’t be going to RSA but we’ll be following it closely to see if anything interesting comes about. To start things off Bill Brenner put together a nice survival guide with four key points for those attending. The…
Certifications – P0wning the Necessary Evil with TrainACE
Right on the heals of a spirited debate at RSA in a panel session titled “Information Security Certifications: Do They Still Provide Industry Value?,” we thought we’d add our thoughts as well as let you know of one local training…
Weekly Rewind – Hacking Back, Twitter Monitoring, RSA Cracked & More…
Welcome to another edition of our Weekly Rewind – where we summarize all our posts from the last week. The top stories this week were 3) “Crypto Cracked but Two-Factor Authentication Remains Safe”, 2) “State Department Looking to Monitor Facebook…
Crypto Cracked but Two-Factor Authentication Remains Safe
In case you haven’t heard … researchers have recently cracked several security tokens that support the older PKCS #1 v1.5 padding mechanism, including the RSA SecurID 800. Devices that support this standard include the capabilities to perform smartcard-type applications (see…
Weekly Rewind – Top Industry News, Kid Hacking, “Infosec” Trademark, & More…
If you missed anything or happened to be offline this past week, we hope you find this post useful as a quick reference. For those readers that may not have noticed, I actually tack on a bit of commentary to…
Racing Away From RSA?
Today’s post was contributed by Sarah Clarke on her thoughts of NIST’s recent update to SP 800-64 Electronic Authentication Guideline. Another milestone has been reached in the race to get rid of now-suspect RSA token technology. On December 12, 2011,…