-
Are there Web service security standards or risk assessment checklists?
As more organisations integrate business-critical functions with Web services, the security of those services becomes of greater importance. But are there Web service security standards whereby bus...
-
Dynamic code analysis vs. static analysis source code testing
Managing vulnerabilities involves a wide array of security testing, including both dynamic and static source code analysis. Learn how the two differ, as well as how they are performed in this exper...
-
How to meet the PCI DSS compliance deadline on an IT security budget
Learn how to meet the upcoming PCI DSS compliance deadline while sticking to an IT security budget by leveraging existing security infrastructure in this response from expert Mathieu Gorge.
-
PCI PTS: Understanding PCI PIN security requirements
What is PTS, and how does it relate to PCI DSS? In this expert response, learn about the differences between PCI DSS, PA DSS and PTS, as well as recent updates to PCI PTS requirements.
-
Database activity monitoring technology vs. SIEM tools
In this expert response, Peter Wood explains the difference between database activity monitoring systems and security information and event management (SIEM) tools.
-
Mobile encryption options for mobile devices: Built-in vs. manual encryption
There are a few different ways to approach mobile encryption. In this expert response, Peter Wood discusses the pros and cons of different mobile encryption options.
-
Alternatives to buying full-on network access control (NAC) systems
In this expert response, Peter Wood outlines some alternatives to NAC systems, and explains why, sometimes, NAC systems really are the best choice.
-
Pwn2Own results: The most secure Internet browser for enterprises
Which browsers are secure enough for enterprise use, and which should be avoided at all costs? In this expert response, Richard Brain examines the results of the 2010 CanSecWest Pwn2Own competition...
-
Google cloud applications: Secure enough for the enterprise?
Google cloud applications aren't necessarily known for their security. In this expert response, learn what to watch out for when considering using such apps in the enterprise.
-
Securing Web applications with Web application firewalls
Are Web application firewalls the best choice for securing Web applications? In this expert response, find out what other Web application security options are out there.
-
How to prevent Adobe hacks from affecting your organisation
In this expert response, find out why Adobe has been an enticing target for PDF attacks recently.
-
USB drive security best practices and processes
There are some best practices to follow when it comes to USB drive security. Learn what they are and how to protect your company from USB security threats.
-
Getting the most out of the gap analysis process
In this expert response, Neil O'Connor explains how to get the most out of the gap analysis process in your organization.
-
Windows 2003 DNS configuration tips
Expert Richard Brain reviews the best way to configure your server's DNS.
-
Will physical security integrators work with IT departments?
Expert Neil O'Connor shares a recent project that demonstrates how IP-enabled physical security may be changing the market.
-
How to detect if machines have been infected with Trojans, keyloggers
New data protection expert Paul Vlissidis explains the difference between keyloggers and Trojans before revealing how to find both on your machines.
-
How to address a spike in TCP and UDP flows
Have an unusual spike in TCP and UDP flows? Expert Peter Wood explains how to zero in on the problem.
-
Is it enough to analyse log files, or is an IDS necessary?
The more network data you have to analyse, the better. In this expert response, Peter Wood explains what tools can provide the information you need.
-
What to look for in a network security audit
What to look for in a network security audit? That's a short question with a big answer, says expert Peter Wood.
-
How to protect a laptop from spam, viruses
Q&A: Expert Richard Brain explains how to protect your laptop from malware by preventing it from installing in the first place.
-
How to utilize free spam-filtering services for SMBs
Learn how a Web-based free spam-filtering service can secure email and prevent spam from attacking your enterprise.
-
Creating employee privacy policies
Are your employees aware of their workplace privacy rights? More specifically, are they aware of what privacy rights they don't retain? Learn how t...
-
How to ensure secure email exchange with external bu...
When sensitive documents are frequently travelling back and forth between a company and its business partners, email security becomes very importan...