Winter 2011: Password security standards and trendsEmail Alerts
-
Roundup: University case studies on innovative security products
Browse this collection of university case studies from colleges that have successfully implemented innovative security products. Tutorial
-
Virtualisation security for enterprise servers
Don't fall prey to virtual server security myths. In this Security School lesson, expert Ben Chai explains how to implement server virtualisation securely. Security School
-
2010 Royal Holloway information security thesis series
In this series of nine articles, recent MSc graduates from Royal Holloway University of London explain their information security research. Royal Holloway 2010
-
Challenges and solutions: Security of Vehicular Ad-Hoc Networks
In the future, cars themselves may be able to prevent accidents by way of Vehicular Ad-Hoc Networks (VANETs). In this Royal Holloway University of London thesis, Abdul Kalam Aboobaker and Stephen Wolthusen explore security concerns. Royal Holloway eBook Seri
-
Quiz: Virtualisation security for enterprise servers
How much have you learned about securing virtualised servers? Find out in this short quiz. Quiz
-
Financial services sector faces continued information security challenges
The financial services sector faces some sobering information security challenges. Find out what the state of security is in the financial services sector, as well as what banks are doing to combat information security threats. Feature
-
How fuzz testing and tools can optimise testing processes
Toby Clarke and Jason Crampton make a string argument for the use of fuzzing at all stages of testing. Royal Holloway eBook Seri
-
SIEM deployment case study shows patience is required
Williams Lea’s SIEM is already helping reduce manual log reviews. But there’s still a lot of work to be done before the SIEM can be fully deployed. News | 30 Mar 2012
-
Future of SIEM market hinges on past mistakes
The SIEM market had a rocky start, but recent technology advancements have made SIEM products easier and more reliable. News | 29 Mar 2012
-
New Sourcefire firewall with content filtering promises more control
Sourcefire has announced its new firewall with content filtering, which it says will let administrators control users’ activities at a business level. News | 14 Dec 2011
-
London firm offers fixed-price cloud DDoS protection
One company has launched a fixed-price cloud DDoS-protection service for mitigating the ever-present threat of DDoS attacks. News | 16 Nov 2011
-
University IT security pros thwart content piracy with traffic shaping
A traffic-shaping system installed at the University of Exeter quickly yielded huge dividends by blocking illegal piracy of music and films. News | 27 Oct 2011
-
New batch of IDS, IPS evasion techniques are hitting their targets
Stonesoft has discovered 163 new advanced evasion techniques (AET), claiming these AETs can pass below the radar of some IDS, IPS products. News | 12 Oct 2011
-
With UTM system, Blackpool Council trims network security costs
Faced with a network ravaged by Conficker and a dwindling budget, the Blackpool Council implemented a UTM system to cut costs and bolster security. News | 11 Jul 2011
-
World IPv6 Day a success, but IPv6 security problems only beginning
While World IPv6 Day caused no catastrophic Internet outages, some researchers predict that transition-related IPv6 security problems could threaten security. News | 13 Jun 2011
-
Microsoft to address 22 flaws in Patch Tuesday updates
In its advance notification, Microsoft said it would issue 12 bulletins, three critical, addressing holes in Windows, Internet Explorer, Office, Visual Studio and IIS. Article | 03 Feb 2011
-
PCI PTS aims to stop retail IT security breaches, but progress is slow
The new PCI PTS requirements are intended to help stores shore up insecure point-of-sale systems and other common retail IT security weaknesses. Article | 02 Feb 2011
- See More: News on Network Security Monitoring: Tools and Systems
-
Using Burp Suite proxy tool to examine client-side requests
The free Burp Suite proxy tool can be used for good or for bad. Expert Rob Shapland provides usage scenarios for both. Tip
-
OpenVAS how-to: Creating a vulnerability assessment report
In this OpenVAS how-to, learn how to use the free scanner to create a vulnerability assessment report and assess threat levels. Tip
-
Best practices for audit, log review for IT security investigations
Device logs can be one of the most helpful tools infosec pros have, or they can be a huge waste of space. Tip
-
Eight must-fix flaws prior to an application pen test
Many vulnerabilities discovered in application penetration tests are common and easily exploitable. Fortunately, they're also easy to fix. Learn how. Tip
-
iPad security policy pointers for enterprise iPad endpoint integrity
As enterprise iPad use increases, companies must make decisions about iPad security policy and how to enforce it. Lisa Phifer offers several tactics for ensuring iPad endpoint integrity. Tip
-
Free Windows security tools: Using Microsoft EMET
Microsoft recently introduced a free set of tools known as the Enhanced Mitigation Experience Toolkit (EMET), which can retrofit older Windows systems with recently developed security technologies. Learn more about how you can use EMET in this expert... Tip
-
Digital forensic investigation procedure: Form a computer forensics policy
Suffering a breach is problem enough without having to create a forensics plan on the spot. Learn how to craft a forensic readiness policy to lessen the time and impact of a data breach. Tip
-
Corporate penetration testing: Addressing network security issues
By addressing common network security vulnerabilities before conducting a network penetration test, you can save your company valuable time and resources during the testing process. Learn how to identify and address these vulnerabilities. Tip
-
Benchmark security systems with free network security assessment tools
There are many good, free security benchmarking tools that many security pros may not know about. In this expert tip, Michael Cobb gives advice on where to find free network security assessment tools and how to use them. Tip
-
Microsoft security tools: MBSA and MSAT explained
Regular security assessments are crucial, but can be costly. In this tip, Michael Cobb explains how to use the Microsoft Baseline Security Analyzer and the Microsoft Security Assessment Tool for a thorough and free network and risk audit. Tip
- See More: Tips on Network Security Monitoring: Tools and Systems
-
Database activity monitoring technology vs. SIEM tools
In this expert response, Peter Wood explains the difference between database activity monitoring systems and security information and event management (SIEM) tools. Ask the Expert
-
What to look for in a network security audit
What to look for in a network security audit? That's a short question with a big answer, says expert Peter Wood. Ask the Expert
-
How to address a spike in TCP and UDP flows
Have an unusual spike in TCP and UDP flows? Expert Peter Wood explains how to zero in on the problem. Ask the Expert
-
Is it enough to analyse log files, or is an IDS necessary?
The more network data you have to analyse, the better. In this expert response, Peter Wood explains what tools can provide the information you need. Ask the Expert
-
How to manage logs
Neil O'Connor reviews when you should be hanging on to your network logs. Ask the Expert
-
Good Practice Guide 13
Good Practice Guide 13 defines requirements for protective security monitoring that local authorities must comply with in order to prevent accidental or malicious data loss. Definition
-
Infosecurity 2012: IPv6 challenges to network security
In this video interview, Ian Kilpatrick of Wick Hill discusses the IPv6 challenges that small and medium businesses are just beginning to address. Video
-
Security IT technical skills in demand
According to the most recent salary survey conducted by Acumin Consulting Ltd. in partnership with SearchSecurity.co.UK, IT technical skills are in demand when it comes to information security. Video
-
Unified threat management vs. intrusion prevention systems
In this video, Joel Snyder of Opus One talks about how unified threat management stacks up against an intrusion prevention system. Snyder reveals the best options for both midmarket organizations and larger enterprises. Video
-
The value of an intrusion prevention system against a Web attack
Yes, an IPS only protects against known attacks, but a little protection goes a long way. Joel Snyder of Opus One takes a few minutes to talk about the true value of intrusion prevention systems. Video
-
Infosecurity 2012: IPv6 challenges to network security
In this video interview, Ian Kilpatrick of Wick Hill discusses the IPv6 challenges that small and medium businesses are just beginning to address. Video
-
SIEM deployment case study shows patience is required
Williams Lea’s SIEM is already helping reduce manual log reviews. But there’s still a lot of work to be done before the SIEM can be fully deployed. News
-
Future of SIEM market hinges on past mistakes
The SIEM market had a rocky start, but recent technology advancements have made SIEM products easier and more reliable. News
-
Using Burp Suite proxy tool to examine client-side requests
The free Burp Suite proxy tool can be used for good or for bad. Expert Rob Shapland provides usage scenarios for both. Tip
-
New Sourcefire firewall with content filtering promises more control
Sourcefire has announced its new firewall with content filtering, which it says will let administrators control users’ activities at a business level. News
-
London firm offers fixed-price cloud DDoS protection
One company has launched a fixed-price cloud DDoS-protection service for mitigating the ever-present threat of DDoS attacks. News
-
University IT security pros thwart content piracy with traffic shaping
A traffic-shaping system installed at the University of Exeter quickly yielded huge dividends by blocking illegal piracy of music and films. News
-
New batch of IDS, IPS evasion techniques are hitting their targets
Stonesoft has discovered 163 new advanced evasion techniques (AET), claiming these AETs can pass below the radar of some IDS, IPS products. News
-
OpenVAS how-to: Creating a vulnerability assessment report
In this OpenVAS how-to, learn how to use the free scanner to create a vulnerability assessment report and assess threat levels. Tip
-
Best practices for audit, log review for IT security investigations
Device logs can be one of the most helpful tools infosec pros have, or they can be a huge waste of space. Tip
- See More: All on Network Security Monitoring: Tools and Systems
About Network Security Monitoring: Tools and Systems
In this resource you will get tips and tricks from the experts on network security monitoring. Learn how to use network security monitoring tools, systems and software to mitigate threats and enhance security.