The owners of AVSIM, an important resource for Microsoft Flight Simulator users, worked for 13 years to build a well respected site. Using two servers, they conscientiously backed up one to the other… more →
Tom Olzak on SecurityTom Olzak wrote 1 month ago: The owners of AVSIM, an important resource for Microsoft Flight Simulator users, worked for 13 years … more →
Tom Olzak wrote 1 month ago: As security management becomes more integrated into business processes, it’s commonly seen as closel … more →
Tom Olzak wrote 2 months ago: According to the recently released Microsoft Security Intelligence Report (2H2008), social engineeri … more →
Tom Olzak wrote 3 months ago: As usual, finger-pointing about what is beginning to be seen as Conficker FUD is increasing. Unders … more →
Tom Olzak wrote 3 months ago: Although I agree that reliance on human behavior is not a good way to ensure information security po … more →
Tom Olzak wrote 3 months ago: For years, large businesses have spent millions to improve information security. Much of this expen … more →
Tom Olzak wrote 3 months ago: Major Internet browsers were shown to be hackable this week at CanSecWest. This isn’t really … more →
Tom Olzak wrote 3 months ago: Reports of data breaches aren’t uncommon. And explanations are typically slow in coming, but … more →
Tom Olzak wrote 3 months ago: What do you tell your boss when you try to get additional—or any—breach control dollars into the IS … more →
Vinod wrote 4 months ago: What is Threat Modeling? Threat modeling is an engineering technique you can use to help you identi … more →
mcurphey wrote 10 months ago: The CISG Team Blog is now operational. We are initially blogging about things we are doing with Anti … more →
akshay aggarwal wrote 1 year ago: Several enterprises are increasingly investing time and money in building application security tasks … more →
mcurphey wrote 1 year ago: There is a nice video on the Virtual TechEd site here of RR, a Security Developer MVP. Raffaele Ria … more →
Andy wrote 1 year ago: The latest DevCares, from my perspective, was an appropriate deep dive after Tuesday’s MSDN E … more →
Derek Callaway wrote 1 year ago: A widely held notion among computer scientists is that 80% of a programmer’s time is occupied … more →
mcurphey wrote 1 year ago: My colleague and legendary Hummus eater Alik Levin (that’s my plate at lunchtime today but rum … more →
mcurphey wrote 1 year ago: When a customer development team was recently asked to use the AntiXSS library, validate input and e … more →
mcurphey wrote 1 year ago: New article from John Steer on my team Security Policies in the Application Development Process … more →
mcurphey wrote 1 year ago: This paper from IEEE describes how Ford Motor Company use the Threat and Application Modelling tool … more →