M. E. Kabay, PhD, CISSP-ISSMP

Chief Technical Officer (CTO) of Adaptive Cyber Security Instruments, Inc. (ACSI)
Consultant in operations and security management;
Senior Academic Advisor, Master of Science in Information Assurance, School of Graduate Studies
Associate Professor of Information Assurance, School of Business & Management,
Norwich University, Northfield, Vermont.

 Contact info      LinkedIn Profile (professional networking tool with recommendations from colleagues)             (Expand picture)

Please contribute to these worthy causes by clicking on any of the following links (and maybe even making one of them your home page in your browser so you can remember to click daily):
       The Hunger Site       The Breast Cancer Site       The Child Health Site
       The Literacy Site       The Rainforest Site       The Animal Rescue Site
Home Page

Courses

CV

Cyberwatch

Ethics

Security Mgmt

IYIR

Methods

NetworkWorld Archive

Opinion

Ops Mgmt

Overviews

Contact info
 

A NOTE ABOUT NARRATED LECTURES:

Narrated PowerPoint files (PPTX = PowerPoint 2007 & PPT = PowerPoint 2003 and earlier) on this Website are usually compressed using WinZIP to save download time; open with WinZIP or compatible software and run the PPT or PPS or PPSX (self-starting PowerPoint Show) files as slide shows with sound enabled. You can download PowerPoint Viewer 2007 software for Windows from Microsoft free to see any version of PowerPoint files.

 

 

DIRECTORY TO THE WEB SITE:

Click here for a list of brief descriptions of each section of the Web site and a link to a narrated PowerPoint show explaining what's where.

CURRENT COURSE LINK:
IS406B POLITICS OF CYBERSPACE

_____________________________________________________________________

LATEST FILE UPDATES:

Political Action Blog: links to sites, petitions and events for political actions that may interest you.

2009-06-12: Human Rights Campaign Establishes Web Site to Oppose Lies of the Extreme Right about LGBT People
2009-05-27: Fighting Intelligent Design Propaganda
2009-05-06: Protect Yellowstone's Newborn Buffalo
2009-04-24: Establish a Commission to Investigate US Torture and Hold Health Professionals Accountable; Investigate Illegal NSA Wiretapping
2009-04-23: Support the Fraud Enforcement and Recovery Act
2009-04-22: Demand a Special Prosecutor for Torture
2009-04-21: Natural Resources Defense Council issues

______________________________________________________________________

June 2009:

Understanding Computer Crime Studies and Statistics v6:         PDF      HTML      Why one should be careful not to over-interpret published surveys and studies of crimes, especially computers crimes; and how to make sense of sampling, sample sizes, confidence intervals and contingency tables. Updated December 2008 with new material on confounded variables and in June 2009 with minor updates.

Non-narrated lecture notes on Making Sense of Statistics in Information Security presented at ISSA Hartford, CT on June 16, 2009.   PPT      PDF

Non-narrated lecture notes on Legal Aspects of Investigating & Prosecuting Computer Crimes presented at 6th Annual MSIA Graduate Security Conference in a workshop on June 10, 2009.       PPT      PDF

Workshop on Intellectual Property Law -- 13th Colloquium on Information Systems Security Education: Bootcamp on Sunday 31 May 2009. Designed for teachers as an overview of issues and a collection of resources and slides for free use in noncommercial teaching.
      PPT      PDF

May 2009:

DOJ --  Searching and Seizing Computers and Obtaining Electronic Evidence in Criminal Investigations (July 2002)       Index added May 2009        PDF

Pepys into the Corridors of Power: Deciding how long a student should speak, university-style.   HTML            PDF

System Logging -- Written for the MSIA 2.0 program's Seminar 1, Week 6, this commentary, subtitled "I'm a Lumberjack and I'm OK: System Logging," is not a Monty Python skit.     HTML     PDF

April 2009:

IA Specialists Need to Communicate: Guide and Checklist for Expository Writing -- In explaining to our information assurance (IA) graduate students why they end up writing around 100,000 words of expository writing by the time they finish our 18-month master’s program,< http://infoassurance.norwich.edu/ > we (instructors and staff) always insist on the practical value of fluent writing. Being able to respond quickly and effectively to requests from colleagues and supervisors asking for clarification of new policies or of requests for additional resources obviously makes obvious sense; in adHdition, being able to respond succinctly and diplomatically to angry customers (we teach our students to think of everyone depending on them as customers) can have long-term benefits to the organization and to the individual.    HTML       PDF

Parkerian Hexad -- This narrated PowerPoint file (PPT) from the MSIA program introduces the concepts of the Parkerian Hexad -- the six fundamental atomic, non-overlapping attributes of information that we protect in information assurance. The Hexad is replacing the Classic Triad (Confidentiality - Integrity - Availability) as the foundation of IA theory. Also availble as a PowerPoint Show (PPSX) that starts by itself in PowerPoint.      PPT      PPSX        (in 25 MB ZIP archives)

March 2009:

US DoD Annual Estimates of Information Warfare Capabilities and Commitment of the PRC 2002-2009 -- The Annual Report to Congress on the Military Power of the People's Republic of China from the US Department of Defense has been issued every year since 2002. Reading through all the reports from 2002 through 2009 provides valuable perspective on the DoD view of Chinese information warfare capabilities. The following is a simple compilation of extracts from the Annual Reports bearing on information warfare capabilities and commitment of the PRC and the PLA, including specific commentary about industrial espionage sponsored by agencies in the PRC.     PDF

Frequently Corrected Errors -- I’ve been editing technical writing since 1970 and notice that some errors keep popping up in many writers’ papers. I’ve been collecting the comments I make about these errors and hope that you will find some of them helpful. Several colleagues have contributed suggestions that I have gratefully incorporated and acknowledged in the file. Version 6 was updated in March 2009.      PDF

Introduction to Database Management System Administration & Security -- a 90-slide overview of security aspects of DBMS theory and practice. Created for MSIA GI512, the new Seminar 1 starting in June 2009.

  • Part 1: Overview of Database Theory
  • Part 2: Administration & Concurrency Control
  • Part 3: ACID Transactions
  • Part 4: DB Security & Resource Management

Narrated PPTX file in ZIP (16 MB)

Narrated PPT file in ZIP (23 MB)

Non-narrated PPTX file (6 MB)

Script as PDF (350 KB)

February 2009:

Computer-Aided Consensus(TM) -- CAC -- is a useful extension of brainstorming and the Delphi Technique for exploring and analyzing project priorities, resource estimates, and any other discussion topics in groups. Narrated PPT file (in ZIP) available along with PDF and MP3 versions.

On Writing v9: new material about top-down writing.       PDF       HTML

January 2009:

Electronic Crime Scene Investigation: A Guide for First Responders, Second Edition: a Review      PDF      The National Institute of Justice has issued its second edition of this classic guide. Read the review and download the document. It is required reading for all information assurance professionals who could have contact with a crime scene involving computers and networks.

The End of Passwords     PDF      Why I hate passwords as a method for authentication.

Why Study Crimes?     PDF     What are the issues raised by virus-writing and hacking courses? This essay, based on columns I wrote for Network World Security Strategies, was used in the MSIA program.

Using E-mail Safely and Well (v2):      HTML       PDF      Compilation of several short papers published from 1995 through 2007; updated and reformatted January 2009.

December 2008:

Computer Security Handbook, 5th Edition front matter, table of contents for every chapter and index as PDF. Bosworth, Sy, M. E. Kabay & E. Whyne (2009), eds. Wiley. ISBN 978-0-471-71652-5. 2044 pp. Two volumes. Index. (Publication date February 2009).

November 2008:

Cyclical Keyword Index has all the titles of every paper on this Web site permuted by keyword along with its URL(s); thus "Cyclical Keyword Index" would be included in that form and also as "Keyword Index, Cyclical" and "Index, Cyclical Keyword." Also available in PDF.

Organizational Psychology (PPSX): narrated lecture in PowerPoint self-starting show (in WinZIP archive) updated with new material for MSIA 2.0 courses. Also available as original PPT version in WinZip.

Visible Ops Security: Review of the excellent publication Visible Ops Security: Achieving Common Security and IT Operations Objectives in 4 Practical Steps by Gene Kim, Paul Love and George Spafford (2008) from the IT Process Institute. This review is an edited compilation of the individual parts I originally published in the Network World Security Strategies newsletter in November 2008.

Wireless LAN Security: Training materials from the Government of Canada Communications Security Establishment. WinZIP file.

October 2008:

New course for Spring 2009: IS406B POLITICS OF CYBERSPACE

Warriors of the Internet (2002)     MPG    (70 MB movie file). Computer animation by Gunilla Elam, Tomas Stephanson, and Niklas Hanberger explains fundamentals of TCP/IP in a charming 12 minute video. Made available by permission of the authors.

September 2008: USPIS security awareness videos posted online for download by users with high-speed Internet access

 


 

Copyright © 2009 M. E. Kabay.  All rights reserved.

The opinions expressed in any of the writings on this Web site represent the author’s opinions and do not necessarily represent the opinions or positions of his employers, associates, colleagues, students, relatives, friends, enemies, cats, dog or plants.

Updated 2009-06-23