PUBLICATIONS

Michel E. Kabay, PhD, CISSP-ISSMP

2011

InfoSec Reviews InfoSec Perception newsletter. * indicates collaboration with guest authors.

http://www.infosecreviews.com/perception

1.        Coping with a Compromised E-mail Account (2011-12-23) http://infosecreviews.com/perception/?p=112

2.        *Macintosh Malware Erupts (2011-12-16) http://infosecreviews.com/perception/?p=107

3.        Checking for Data-Conversion Errors (2011-12-09) http://infosecreviews.com/perception/?p=94

4.        Free Slide Sets for Introduction to IA (2011-12-02) http://infosecreviews.com/perception/?p=89

5.        All We Want are the Facts, Ma’am (2011-11-27) http://infosecreviews.com/perception/?p=84

6.        Ira Winkler is Wrong: Undergraduate Degrees in Information Assurance are Worthwhile (2011-11-18) http://infosecreviews.com/perception/?p=65

7.        Virtual Meetings for IA Professionals (2011-11-11) http://infosecreviews.com/perception/?p=59

8.        Archive of NWSS Articles Now Online (2011-11-04) http://infosecreviews.com/perception/?p=51

9.        News of the World Hacking Debacle: Groupthink in Action (2011-10-28) http://infosecreviews.com/perception/?p=42

10.     HTCIA Membership Rules: A Debate (2011-10-21) http://infosecreviews.com/perception/?p=25

11.     Hurricane Andrew (August 1992): Organizational Issues (2011-10-17) http://infosecreviews.com/perception/?p=13

12.     Hurricane Andrew (August 1992): Lessons Learned (2011-10-10) http://infosecreviews.com/perception/?p=10

13.     Hurricane Andrew (August 1992): A Wake-up Call for Emergency Preparedness (2011-10-07) http://infosecreviews.com/perception/?p=19

14.     Credo (2011-09-19) http://infosecreviews.com/perception/?page_id=8

 

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

There are usually 8-10 articles in press at any time. These columns have ~55,000 subscribers (Nov 2009). * indicates collaboration with guest authors.

Archives of original versions in PDF at http://www.mekabay.com/nwf

1.        Vale Atque Ave (09/28/11) http://www.networkworld.com/newsletters/sec/2011/092611sec2.html

2.        See you anon: Reflections on online anonymity (09/26/11) http://www.networkworld.com/newsletters/sec/2011/092611sec1.html

3.        Coping with HIPAA regulations: Electronic faxes (09/21/11) http://www.networkworld.com/newsletters/sec/2011/091911sec2.html

4.        HIPAA on phones, faxes and e-mail (09/19/11) http://www.networkworld.com/newsletters/sec/2011/091911sec1.html

5.        Homeland Security Digital Library – Priceless resource (09/14/11) http://www.networkworld.com/newsletters/sec/2011/091211sec2.html

6.        Velocihackers and Tyrannosaurus superior (09/12/11) http://www.networkworld.com/newsletters/sec/2011/091211sec1.html

7.        Justifying spontaneous computer seizures (09/07/11) http://www.networkworld.com/newsletters/sec/2011/090511sec2.html

8.        Search and seizure: No Fourth-Amendment rights at Borders (09/06/11) http://www.networkworld.com/newsletters/sec/2011/090511sec1.html

9.        Information assurance must adapt to changing technology (09/01/11) http://www.networkworld.com/newsletters/sec/2011/082911sec2.html

10.     COBIT 5: New evolution of COBIT guidance (08/29/11) http://www.networkworld.com/newsletters/sec/2011/082911sec1.html

11.     NICE Move: Draft National Initiative for Cybersecurity Education (08/24/11) http://www.networkworld.com/newsletters/sec/2011/082211sec2.html

12.     Synchronizing software with ViceVersa (08/22/11) http://www.networkworld.com/newsletters/sec/2011/082211sec1.html

13.     Synchronization software: Synctoy revisited (08/17/11) http://www.networkworld.com/newsletters/sec/2011/081511sec2.html

14.     *The BP case: Online reputation management (08/15/11) http://www.networkworld.com/newsletters/sec/2011/081511sec1.html

15.     *Dishonest methods involving online reputation management (08/10/11) http://www.networkworld.com/newsletters/sec/2011/080811sec2.html

16.     *Online reputation management: Manipulating search engines (08/08/11) http://www.networkworld.com/newsletters/sec/2011/080811sec1.html

17.     Disintermediation affects reputation (08/03/11) http://www.networkworld.com/newsletters/sec/2011/080111sec2.html

18.     *Planes, cats & mosquitos: The power of metaphor (08/01/11) http://www.networkworld.com/newsletters/sec/2011/080111sec1.html

19.     Sexting: Loss of control = Embarrassment, bullying & potential prosecution (07/27/11) http://www.networkworld.com/newsletters/sec/2011/072511sec2.html

20.     Sexting: Pervasive cameras + Internet = Autoporn (07/25/11) http://www.networkworld.com/newsletters/sec/2011/072511sec1.html

21.     Accessible backups, not recursive backups (07/20/11) http://www.networkworld.com/newsletters/sec/2011/071811sec2.html

22.     *Can you comply with court orders for data from the cloud? (07/18/11) http://www.networkworld.com/newsletters/sec/2011/071811sec1.html

23.     *Is your company ready for legal holds and compliance with mobility and the cloud? (07/13/11) http://www.networkworld.com/newsletters/sec/2011/071111sec2.html

24.     *Does your security policy reflect mobility and cloud security? (07/11/11) http://www.networkworld.com/newsletters/sec/2011/071111sec1.html

25.     *Is your company ready for 4G mobile connectivity? (07/06/11) http://www.networkworld.com/newsletters/sec/2011/070411sec2.html

26.     *Is the operating system dead? (07/04/11) http://www.networkworld.com/newsletters/sec/2011/070411sec1.html

27.     *Don't MISs Bidgoli's Second Edition: Even Better (06/29/11) http://www.networkworld.com/newsletters/sec/2011/062711sec2.html

28.     Too much access to the Internet? (06/27/11) http://www.networkworld.com/newsletters/sec/2011/062711sec1.html

29.     Securing the eCampus 2011 (06/22/11) http://www.networkworld.com/newsletters/sec/2011/062011sec2.html

30.     Experts risk indigestion without RISKS DIGEST (06/20/11) http://www.networkworld.com/newsletters/sec/2011/062011sec1.html

31.     Don't dismiss community college grads with degrees in information assurance (06/15/11) http://www.networkworld.com/newsletters/sec/2011/061311sec2.html

32.     All the news that hits the print (06/13/11) http://www.networkworld.com/newsletters/sec/2011/061311sec1.html

33.     Overreaction and Underreaction (06/08/11) http://www.networkworld.com/newsletters/sec/2011/060611sec2.html

34.     Incomprehensible spam (06/06/11) http://www.networkworld.com/newsletters/sec/2011/060611sec1.html

35.     Check the terms of service before you order (06/01/11) http://www.networkworld.com/newsletters/sec/2011/053011sec2.html

36.     *Hidden URLs in phone and tablet browsers (05/30/11) http://www.networkworld.com/newsletters/sec/2011/053011sec1.html

37.     Münchhausen Syndrome by Internet: Deceiving the sympathetic (05/25/11) http://www.networkworld.com/newsletters/sec/2011/052311sec2.html

 

38.     Winding one's way towards insanity (05/23/11) http://www.networkworld.com/newsletters/sec/2011/052311sec1.html

39.     *Patchwork solution: Satellite Internet services in rural communities (05/18/11) http://www.networkworld.com/newsletters/sec/2011/051611sec2.html

40.     *The CEO and his hardware token: A lesson learned (05/16/11) http://www.networkworld.com/newsletters/sec/2011/051611sec1.html

41.     *University professors to magazine publishers: We're not chopped liver (05/11/11) http://www.networkworld.com/newsletters/sec/2011/050911sec2.html

42.     *Native intelligence: Awareness and humor (05/09/11) http://www.networkworld.com/newsletters/sec/2011/050911sec1.html

43.     *Controlling the subversive spreadsheet (05/04/11) http://www.networkworld.com/newsletters/sec/2011/050211sec2.html

44.     WikiLeaks - Responsibility or vandalism? (05/02/11) http://www.networkworld.com/newsletters/sec/2011/050211sec1.html

45.     The politics of cyberspace: Disintermediation vs. confidentiality (04/27/11) http://www.networkworld.com/newsletters/sec/2011/042511sec2.html

46.     *Benefits and risks of nanotechnology (04/25/11) http://www.networkworld.com/newsletters/sec/2011/042511sec1.html

47.     *Benefits and risks of DNA-based computing (04/20/11) http://www.networkworld.com/newsletters/sec/2011/041811sec2.html

48.     *Computing naturally: Benefits and risks of genetic algorithms (04/18/11) http://www.networkworld.com/newsletters/sec/2011/041811sec1.html

49.     *Vaporizing communications: Splitting the message (04/13/11) http://www.networkworld.com/newsletters/sec/2011/041111sec2.html

50.     *Electronic messaging inherently insecure (04/11/11) http://www.networkworld.com/newsletters/sec/2011/041111sec1.html

51.     Discretion in e-mail criticism (04/06/11) http://www.networkworld.com/newsletters/sec/2011/040411sec2.html

52.     Apology to Samsung: We blew it (04/04/11) http://www.networkworld.com/newsletters/sec/2011/040411-sec-apology.html

53.     *Samsung laptops clean: No keylogger or spyware of any kind found (04/04/11) http://www.networkworld.com/newsletters/sec/2011/040411-sec-stephenson.html

54.     UPDATE: Samsung keylogger is false alarm (03/30/11) http://www.networkworld.com/newsletters/sec/2011/032811sec2.html

55.     *The Russian Cybermafia: RBN & the RBS WorldPay attack (03/28/11) http://www.networkworld.com/newsletters/sec/2011/032811sec1.html

56.     *The Russian Cybermafia: Boa Factory & CarderPlanet (03/23/11) http://www.networkworld.com/newsletters/sec/2011/032111sec2.html

57.     *The Russian cybermafia: Beginnings (03/21/11) http://www.networkworld.com/newsletters/sec/2011/032111sec1.html

58.     Discretion when wearing a uniform (03/16/11) http://www.networkworld.com/newsletters/sec/2011/031411sec2.html

59.     Discretion on the job (03/14/11) http://www.networkworld.com/newsletters/sec/2011/031411sec1.html

60.     Backups as an anti-plagiarism tool (03/09/11) http://www.networkworld.com/newsletters/sec/2011/030711sec2.html

61.     Web design glitches affect utility (03/07/11) http://www.networkworld.com/newsletters/sec/2011/030711sec1.html

62.     *Join the club: Changing the status quo for security (03/02/11) http://www.networkworld.com/newsletters/sec/2011/022811sec2.html

63.     *Changing the status quo for security: Turn it on (02/28/11) http://www.networkworld.com/newsletters/sec/2011/022811sec1.html

64.     Securing road warriors' communications (02/23/11) http://www.networkworld.com/newsletters/sec/2011/022111sec2.html

65.     Road warriors: Secure your laptops (02/21/11) http://www.networkworld.com/newsletters/sec/2011/022111sec1.html

66.     *Threat actors and victims (02/16/11) http://www.networkworld.com/newsletters/sec/2011/021411sec2.html

67.     *Breaches and vectors (02/14/11) http://www.networkworld.com/newsletters/sec/2011/021411sec1.html

68.     *The leaking vault: Five years of data breaches (02/09/11) http://www.networkworld.com/newsletters/sec/2011/020711sec2.html

69.     History and governance: the politics of cyberspace (02/07/11) http://www.networkworld.com/newsletters/sec/2011/020711sec1.html

70.     The politics of cyberspace (02/02/11) http://www.networkworld.com/newsletters/sec/2011/013111sec2.html

71.     Costs of delayed validation (01/31/11) http://www.networkworld.com/newsletters/sec/2011/013111sec1.html

72.     *Using cloud computing and storage for business continuity (01/26/11)  http://www.networkworld.com/newsletters/sec/2011/012411sec2.html

73.     * Business continuity planning still not widely implemented (01/24/11) http://www.networkworld.com/newsletters/sec/2011/012411sec1.html

74.     Can the government prevent a DDoS attack? http://www.networkworld.com/newsletters/sec/2011/011710sec2.html  

75.     Cybercrime and the U.S. criminal justice system (01/17/11) http://www.networkworld.com/newsletters/sec/2011/011711sec1.html   

76.     Handbook of technology management http://www.networkworld.com/newsletters/sec/2011/011011sec2.html

77.     Personal Web site updated: New sections, content http://www.networkworld.com/newsletters/sec/2011/011011sec1.html

78.     Software asset management and security http://www.networkworld.com/newsletters/sec/2011/010311sec2.html

79.     IP theft is illegal, unethical and costly http://www.networkworld.com/newsletters/sec/2011/010311sec1.html  

2010

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

* indicates collaboration with guest authors.

 

1.        Speech may be free, but it isn't always wise (12/22/10) http://www.networkworld.com/newsletters/sec/2010/122010sec2.html

2.        Free speech issues: Controlling content in college newspapers (12/20/10) http://www.networkworld.com/newsletters/sec/2010/122010sec1.html

3.        Comment spam: Ending anonymity? (12/15/10) http://www.networkworld.com/newsletters/sec/2010/121310sec2.html

4.        Freedom of speech vs. monomaniacs and spammers (12/13/10) http://www.networkworld.com/newsletters/sec/2010/121310sec1.html

5.        Regulating content in private forums (12/08/10) http://www.networkworld.com/newsletters/sec/2010/120610sec2.html

6.        Journalistic responsibility in the age of the Internet telephone game (12/06/10) http://www.networkworld.com/newsletters/sec/2010/120610sec1.html

7.        *Significant distinctions in mobile management and security (12/01/10) http://www.networkworld.com/newsletters/sec/2010/112910sec2.html

8.        *Mobile management and security: Keeping the dark side at bay (11/29/10) http://www.networkworld.com/newsletters/sec/2010/112910sec1.html

9.        *Products and privacy: Social media are changing the litigation game (11/22/10) http://www.networkworld.com/newsletters/sec/2010/112210sec1.html

10.     The X-Force experience in SCADA security and terrorism (11/17/10) http://www.networkworld.com/newsletters/sec/2010/111510sec2.html

11.     SCADA security and terrorism: The X-Force Report (11/15/10) http://www.networkworld.com/newsletters/sec/2010/111510sec1.html

12.     *Security reality vs. feelings: Steinberger on Schneier (11/10/10) http://www.networkworld.com/newsletters/sec/2010/110810sec2.html

13.     *Use beta testing to avoid product crashes (11/08/10) http://www.networkworld.com/newsletters/sec/2010/110810sec1.html

14.     A security analysis of Don't ask, don't tell: Prescription for blackmail (11/03/10) http://www.networkworld.com/newsletters/sec/2010/110110sec2.html

15.     Security in the electric power industry: Riptech Report of 2001 (11/01/10) http://www.networkworld.com/newsletters/sec/2010/110110sec1.html

16.     *SCADA security: A real-world case study (10/25/10) http://www.networkworld.com/newsletters/sec/2010/102510sec1.html

17.     Entertaining risk analysis (10/20/10)  http://www.networkworld.com/newsletters/sec/2010/101810sec2.html

18.     *Tap dancing around the Fourth Amendment (10/18/10) http://www.networkworld.com/newsletters/sec/2010/101810sec1.html

19.     *Encryption for the Internet and for telephony (10/13/10) http://www.networkworld.com/newsletters/sec/2010/101110sec2.html

20.     Lesson in a Haystack: Kerckhoff’s principle in action (10/11/10) http://www.networkworld.com/newsletters/sec/2010/101110sec1.html

21.     Lesson in a haystack: Idealists take on the theocracy (10/06/10) http://www.networkworld.com/newsletters/sec/2010/100410sec2.html

22.     *Social Engineering via Social networking (10/04/10) http://www.networkworld.com/newsletters/sec/2010/100410sec1.html

23.     *Professionals: Don’t use Facebook and Twitter (09/29/10) http://www.networkworld.com/newsletters/sec/2010/092710sec2.html

24.     *Privacy issues in social-networking sites (09/27/10) http://www.networkworld.com/newsletters/sec/2010/092710sec1.html

25.     A laundry list of power industry incidents to learn from (09/22/10)  http://www.networkworld.com/newsletters/sec/2010/092010sec2.html

26.     Increasing security of SCADA systems in power industry (09/20/10) http://www.networkworld.com/newsletters/sec/2010/092010sec1.html

27.     Attacks on power systems: Industry/government consensus (09/15/10) http://www.networkworld.com/newsletters/sec/2010/091310sec2.html

28.     Attacks on power systems: Hackers, malware (09/13/10) http://www.networkworld.com/newsletters/sec/2010/091310sec1.html

29.     Attacks on power systems: Data leakage, espionage, insider threats, sabotage (09/08/10) http://www.networkworld.com/newsletters/sec/2010/090610sec2.html

30.     Electric power industry as critical infrastructure (09/06/10) http://www.networkworld.com/newsletters/sec/2010/090610sec1.html

31.     Cyber situational awareness for the electric power industry (09/01/10) http://www.networkworld.com/newsletters/sec/2010/083010sec2.html

32.     Sophos booklet helpful in corporate security awareness (08/25/10) http://www.networkworld.com/newsletters/sec/2010/082310sec2.html

33.     SOPHOSticated advice about safe Web browsing  (08/23/10) http://www.networkworld.com/newsletters/sec/2010/082310sec1.html

34.     Proposing a secure global opt-out list (08/18/10) http://www.networkworld.com/newsletters/sec/2010/081610sec2.html

35.     Clamping down on spammers (08/16/10) http://www.networkworld.com/newsletters/sec/2010/081610sec1.html

36.     *Keep your network management rules current (08/11/10) http://www.networkworld.com/newsletters/sec/2010/080910sec2.html

37.     Recipients not the only victims of spammers (08/09/10) http://www.networkworld.com/newsletters/sec/2010/080210sec2.html

38.     *Challenges of software quality assurance (08/04/10) http://www.networkworld.com/newsletters/sec/2010/080210sec2.html

39.     *Software shouldn't fail (08/02/10) http://www.networkworld.com/newsletters/sec/2010/080210sec1.html

40.     *Automated software quality assurance really matters (07/28/10) http://www.networkworld.com/newsletters/sec/2010/072610sec2.html

41.     *Enterprise UTM vs next-generation firewalls (07/26/10) http://www.networkworld.com/newsletters/sec/2010/072610sec1.html

42.     Unified security (07/21/10) http://www.networkworld.com/newsletters/sec/2010/071910sec2.html

43.     Preventing identity theft (07/19/10) http://www.networkworld.com/newsletters/sec/2010/071910sec1.html

44.     Check your credit-card bills (07/14/10) http://www.networkworld.com/newsletters/sec/2010/071210sec2.html

45.     Anonymous malice and e-mail protocol (07/12/10) http://www.networkworld.com/newsletters/sec/2010/071210sec1.html

46.     *Bidgoli's new MIS 2010 textbook a gold mine (07/07/10) http://www.networkworld.com/newsletters/sec/2010/070510sec2.html

47.     Academic fraud: The biology lab and the French paper (07/05/10) http://www.networkworld.com/newsletters/sec/2010/070510sec1.html

48.     Essay forensics: The German caper (06/30/10) http://www.networkworld.com/newsletters/sec/2010/062810sec2.html

49.     Fraudulent term papers: A breach of authenticity (06/28/10) http://www.networkworld.com/newsletters/sec/2010/062810sec1.html

50.     Carry out routine internal audits of communications (06/23/10) http://www.networkworld.com/newsletters/sec/2010/062110sec2.html

51.     Michael Powell gives The Home Depot the finger (guard) (06/21/10) http://www.networkworld.com/newsletters/sec/2010/062110sec1.html

52.     Doing the right thing on the 'Net (06/16/10) http://www.networkworld.com/newsletters/sec/2010/061410sec2.html

53.     Using e-mail safely and well (06/14/10) http://www.networkworld.com/newsletters/sec/2010/061410sec1.html

54.     Socializing safely via the Internet (06/09/10) http://www.networkworld.com/newsletters/sec/2010/060710sec2.html

55.     Get out there and teach: Integrating cyberspace into our moral universe (06/07/10) http://www.networkworld.com/newsletters/sec/2010/060710sec1.html

56.     Photo forensics: Identifying faked pictures (06/02/10) http://www.networkworld.com/newsletters/sec/2010/053110sec2.html

57.     *Talking with a Forbes blogger about firewalls (05/31/10) http://www.networkworld.com/newsletters/sec/2010/053110sec1.html

58.     *The firewall: Interview with blogger Daniel Kennedy (05/26/10) http://www.networkworld.com/newsletters/sec/2010/052410sec2.html

59.     Self-replicating nanobots (05/24/10) http://www.networkworld.com/newsletters/sec/2010/052410sec1.html

60.     Nanotech will be focus for future criminal hackers (05/19/10) http://www.networkworld.com/newsletters/sec/2010/051710sec2.html

61.     *Legal risks with virtual currencies in online games (05/17/10) http://www.networkworld.com/newsletters/sec/2010/051710sec1.html

62.     *Real legal issues with virtual currencies (05/12/10) http://www.networkworld.com/newsletters/sec/2010/051010sec2.html

63.     Domestic politics are important in dealing with Internet censorship in China (05/12/10) http://www.networkworld.com/newsletters/sec/2010/051010sec1.html

64.     Internet censorship in China: The conventional view (5/05/10) http://www.networkworld.com/newsletters/sec/2010/050310sec2.html

65.     Automated testing a must for effective SQA (5/03/10) http://www.networkworld.com/newsletters/sec/2010/050310sec1.html

66.     Software inspections and debugging a must for effective SQA (4/28/10) http://www.networkworld.com/newsletters/sec/2010/042610sec2.html

67.     Canning the spammers: Operators' licenses? For computers?? (4/26/10) http://www.networkworld.com/newsletters/sec/2010/042610sec1.html

68.     Fundamental causes of spam (4/21/10) http://www.networkworld.com/newsletters/sec/2010/041910sec2.html

69.     Canning the spammers: The problem is not improving (4/19/10) http://www.networkworld.com/newsletters/sec/2010/041910sec1.html

70.     WikiLeaks and Iceland battle for Internet freedom (4/14/10) http://www.networkworld.com/newsletters/sec/2010/041210sec2.html

71.     The Battle for Internet Freedom in Italy (4/12/10) http://www.networkworld.com/newsletters/sec/2010/041210sec1.html

72.     Who's responsible in the battle for Internet freedom (04/07/10) http://www.networkworld.com/newsletters/sec/2010/040510sec2.html

73.     Defamation and the battle for Internet freedom (04/05/10) http://www.networkworld.com/newsletters/sec/2010/040510sec1.html

74.     Postmortem: Broken feedback loops in critical systems (03/31/10) http://www.networkworld.com/newsletters/sec/2010/032910sec2.html

75.     Restrictions on intellectual property (03/29/10) http://www.networkworld.com/newsletters/sec/2010/032910sec1.html

76.     The battle for Internet freedom: Obscenity and child pornography (03/24/10) http://www.networkworld.com/newsletters/sec/2010/032210sec2.html

77.     The battle for Internet freedom (03/22/10) http://www.networkworld.com/newsletters/sec/2010/032210sec1.html

78.     Pushing for software quality assurance (03/17/10) http://www.networkworld.com/newsletters/sec/2010/031510sec2.html

79.     *Practical priorities in PCI DSS logging (3/10/10) http://www.networkworld.com/newsletters/sec/2010/030810sec2.html

80.     *PCI DSS logging: A must for compliance (3/08/10) http://www.networkworld.com/newsletters/sec/2010/030810sec1.html

81.     Software development and quality assurance (3/08/10) http://www.networkworld.com/newsletters/sec/2010/031510sec1.html

82.     Texting on mobile phones while driving (3/03/10) http://www.networkworld.com/newsletters/sec/2010/030110sec2.html

83.     Texting on mobile phones while driving: Duhhh (3/01/10) http://www.networkworld.com/newsletters/sec/2010/030110sec1.html

84.     Regulations and resolutions of talking on mobile phones while driving (2/24/10) http://www.networkworld.com/newsletters/sec/2010/022210sec2.html

85.     Documented dangers of talking on mobile phones while driving (2/22/10) http://www.networkworld.com/newsletters/sec/2010/022210sec1.html

86.     Is there a best certification? (2/17/10) http://www.networkworld.com/newsletters/sec/2010/021510sec2.html

87.     Mandatory certification & licensing for IA professionals (2/15/10) http://www.networkworld.com/newsletters/sec/2010/021510sec1.html

88.     Context for discussions of mandatory certification (2/10/10) http://www.networkworld.com/newsletters/sec/2010/020810sec2.html

89.     More evidence of value of security certification (2/08/10) http://www.networkworld.com/newsletters/sec/2010/020810sec1.html

90.     Do IA certifications improve hiring, promotion & salaries? (2/03/10) http://www.networkworld.com/newsletters/sec/2010/020110sec2.html

91.     Fact, fiction and the Internet (2/01/10) http://www.networkworld.com/newsletters/sec/2010/020110sec1.html

92.     IMPERVAious to common sense (1/27/10) http://www.networkworld.com/newsletters/sec/2010/012510sec2.html

93.     Informing victims of identity theft (1/25/10) http://www.networkworld.com/newsletters/sec/2010/012510sec1.html

94.     IC3 includes identity theft in statistics (1/21/10) http://www.networkworld.com/newsletters/sec/2010/011810sec2.html

95.     Windows 7 troubles and business continuity (1/19/10) http://www.networkworld.com/newsletters/sec/2010/011810sec1.html

96.     *Pirate's cove: Defenses (1/13/10) http://www.networkworld.com/newsletters/sec/2010/011110sec2.html

97.     *Pirate's cove: The eastern havens (1/11/10) http://www.networkworld.com/newsletters/sec/2010/011110sec1.html

98.     *Pirate's Cove: The western havens (1/06/10) http://www.networkworld.com/newsletters/sec/2010/010410sec2.html

99.     *Pirate's Cove: Setting the stage (1/04/10) http://www.networkworld.com/newsletters/sec/2010/010410sec1.html

2009

Bosworth, S., M. E. Kabay, & E. Whyne (2009), editors. Computer Security Handbook, 5^th Edition. Wiley (ISBN 0-471-71652-9). Two volumes; 2040 pp. Index.  Chapters:

2.             Kabay, M. E.: History of Computer Crime

10.           Kabay, M. E.: Understanding Studies and Surveys of Computer Crime

15.           Cobb, C., S. Cobb & M. E. Kabay: Penetrating Systems and Networks

38.           Nichols, L. E., M. E. Kabay, & T. Braithwaite: Writing Secure Code

44.           Kabay, M. E. & B. Robertson: Security Policy Guidelines

47.           Kabay, M. E., D. Holden & Myles Walsh: Operations Security and Production Controls

48.           Kabay, M. E. & N. Takacs: E-Mail and Internet Use Policies

50.           Kabay, M. E., B. Robertson, M. Akella & D. T. Lang: Using Social Psychology to Implement Security Policies

56.           Miora, M., M. E. Kabay & B. Cowens: Computer Security Incident Response Teams

57.           Kabay, M. E. & D. Holden: Data Backups and Archives

63.           Hallberg, C., M. E. Kabay, B. Robertson & A. Hutt: Management Responsibilities and Liabilities

66.           Kabay, M. E. & S. Kelley: Developing Security Policies

70.           Kabay, M. E., E. Salveggio & R. Guess: Anonymity and Identity in Cyberspace

74.           Christian, C., M. E. Kabay, K. Henry & S. Schneider: Professional Certification and Training in Information Assurance

 

White Papers on Web Site

1.        Protecting Your Reputation in Cyberspace. http://www.mekabay.com/infosecmgmt/reputation.pdf

2.        Waving the Red Flag: Rules for Reducing Identity Theft. http://www.mekabay.com/infosecmgmt/redflag.pdf

3.        Documentation for Less Work: Will this Have to be Done Again? http://www.mekabay.com/opsmgmt/documentation.pdf

4.        Preparing for the Next Solar Max. http://www.mekabay.com/infosecmgmt/solarmax.pdf

5.        Understanding Computer Crime Studies and Statistics v6. http://www.mekabay.com/methodology/crime_stats_methods.pdf

6.        Pepys into the Corridors of Power. http://www.mekabay.com/opinion/pepys.pdf

7.        System Logging. http://www.mekabay.com/opsmgmt/logging.pdf

8.        IA Specialists Need to Communicate: Guide and Checklist for Expository Writing. http://www.mekabay.com/expository.pdf

9.        US DoD Annual Estimates of Information Warfare Capabilities and Commitment of the PRC 2002-2009. http://www.mekabay.com/overviews/dod_prc_iw.pdf

10.     Frequently Corrected Errors v6. http://www.mekabay.com/methodology/fce.pdf

11.     On Writing v9. http://www.mekabay.com/methodology/writing.pdf

12.     The End of Passwords. http://www.mekabay.com/infosecmgmt/end_pw.pdf

13.     Using E-mail Safely and Well v2. http://www.mekabay.com/infosecmgmt/emailsec.pdf

 

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

There are usually 8-10 articles in press at any time. These columns have ~55,000 subscribers (Oct 2008). * indicates collaboration with guest authors.

1.        Internet addiction in China: Some teens harshly treated (12/23/09) http://www.networkworld.com/newsletters/sec/2009/122109sec2.html

2.        Debate over Internet “Addiction” (12/21/09) http://www.networkworld.com/newsletters/sec/2009/122109sec1.html

3.        Internet habit? Dependency? Addiction? Pop psychology? (12/16/09) http://www.networkworld.com/newsletters/sec/2009/121409sec2.html

4.        Traveling to dictatorships (12/14/09) http://www.networkworld.com/newsletters/sec/2009/121409sec1.html

5.        H4ck3rs are people too: Film review (12/09/09) http://www.networkworld.com/newsletters/sec/2009/120709sec2.html

6.        The Fruit of the Poisoned Tree  (12/07/09) http://www.networkworld.com/newsletters/sec/2009/120709sec1.html

7.        Why Criminal Hackers Must Not Be Rewarded (12/02/09) http://www.networkworld.com/newsletters/sec/2009/113009sec2.html

8.        *SANS official talks security (11/30/09) http://www.networkworld.com/newsletters/sec/2009/113009sec1.html

9.        *Information security and business strategy Part 1  (11/23/09) http://www.networkworld.com/newsletters/sec/2009/112309sec1.html

10.     Advice to beginners (11/18/09) http://www.networkworld.com/newsletters/sec/2009/111609sec2.html

11.     A different kind of antiviral donation for Africa (11/16/09) http://www.networkworld.com/newsletters/sec/2009/111609sec1.html

12.     IA job prospects bright (11/11/09) http://www.networkworld.com/newsletters/sec/2009/110909sec2.html

13.     Detailing contingency planning (11/09/09) http://www.networkworld.com/newsletters/sec/2009/110909sec1.html

14.     *SP 800-53 is essential for security in federal government IT systems (11/04/09) http://www.networkworld.com/newsletters/sec/2009/110209sec2.html

15.     *Extensive Catalog Provides Security Controls for Contemporary Security Requirements  (11/02/09) http://www.networkworld.com/newsletters/sec/2009/110209sec1.html

16.     *NIST SP800-53 Rev. 3: Risk Management Framework Underpins the Security Life Cycle  (10/28/09) http://www.networkworld.com/newsletters/sec/2009/102609sec2.html

17.     *NIST SP800-53 Rev. 3: Key to Unified Security Across Federal Government and Private Sectors (10/26/09) http://www.networkworld.com/newsletters/sec/2009/102609sec1.html

18.     Understanding and implementing information security metrics (10/21/09) http://www.networkworld.com/newsletters/sec/2009/101909sec2.html

19.     *Hiring hackers: A rebuttal (part 2) (10/19/09) http://www.networkworld.com/newsletters/sec/2009/101909sec1.html

20.     *Hiring hackers: A Rebuttal (part 1) (10/14/09) http://www.networkworld.com/newsletters/sec/2009/101209sec2.html

21.     Data-theft Trojans and the changing face of the Web (10/12/09) http://www.networkworld.com/newsletters/sec/2009/101209sec1.html

22.     *The Norm Coleman Web crash and full disclosure (2)  (10/07/09) http://www.networkworld.com/newsletters/sec/2009/100509sec2.html

23.     *The Norm Coleman Web crash and full disclosure (1)  (10/05/09) http://www.networkworld.com/newsletters/sec/2009/100509sec1.html

24.     Applying the science of persuasion to security awareness (9/30/09) http://www.networkworld.com/newsletters/sec/2009/092809sec2.html

25.     *The IA Professional's Toolkit Part 7 (9/28/09) http://www.networkworld.com/newsletters/sec/2009/092809sec1.html

26.     *The IA Professional's Toolkit Part 6 (9/23/09)  http://www.networkworld.com/newsletters/sec/2009/092109sec2.html

27.     *The IA Professional's Toolkit Part 5 (9/21/09)  http://www.networkworld.com/newsletters/sec/2009/092109sec1.html

28.     *The IA Professional's Toolkit Part 4 (9/16/09)  http://www.networkworld.com/newsletters/sec/2009/091409sec2.html

29.     *The IA Professional's Toolkit Part 3 (9/14/09)  http://www.networkworld.com/newsletters/sec/2009/091409sec1.html

30.     *The IA Professional's Toolkit Part 2 (9/09/09)  http://www.networkworld.com/newsletters/sec/2009/090709sec2.html

31.     *The IA Professional's Toolkit Part 1 (9/07/09)  http://www.networkworld.com/newsletters/sec/2009/090709sec1.html

32.     Pseudonymous critic impugns integrity of all security professionals (9/02/09)  http://www.networkworld.com/newsletters/sec/2009/083109sec2.html

33.     Identity Theft Resource Center Part 2 (8/31/09)  http://www.networkworld.com/newsletters/sec/2009/083109sec1.html

34.     Identity theft resource center (8/26/09)  http://www.networkworld.com/newsletters/sec/2009/082409sec2.html

35.     *IA Policies Part 2 (8/24/09)  http://www.networkworld.com/newsletters/sec/2009/082409sec1.html

36.     *IA policies (part 1) (8/19/09)  http://www.networkworld.com/newsletters/sec/2009/081709sec2.html

37.     Hiring hackers (part 2) (8/17/09)  http://www.networkworld.com/newsletters/sec/2009/081709sec1.html

38.     Hiring hackers (part 1) (8/12/09)  http://www.networkworld.com/newsletters/sec/2009/081009sec2.html

39.     *Case studies in working with law enforcement (part 2) (8/10/09)  http://www.networkworld.com/newsletters/sec/2009/081009sec1.html

40.     *Case studies in working with law enforcement (Part 1) (8/05/09)  http://www.networkworld.com/newsletters/sec/2009/080309sec2.html

41.     Crisis communications: A primer for teams (part 2) (8/03/09)  http://www.networkworld.com/newsletters/sec/2009/080309sec1.html

42.     Crisis communications: A primer for teams (Part 1) (7/29/09)  http://www.networkworld.com/newsletters/sec/2009/072709sec2.html

43.     Preparing for the next solar max (7/27/09)  http://www.networkworld.com/newsletters/sec/2009/072709sec1.html

44.     Solar storms have caused serious disruptions (7/22/09)  http://www.networkworld.com/newsletters/sec/2009/072009sec2.html

45.     Solar storms are more than a curiosity (7/17/09)  http://www.networkworld.com/newsletters/sec/2009/072009sec1.html

46.     CSH5 discussion group opens for business (7/15/09)  http://www.networkworld.com/newsletters/sec/2009/071309sec2.html

47.     Reality trumps theory (7/13/09)  http://www.networkworld.com/newsletters/sec/2009/071309sec1.html

48.     AMiloration of security: Milo and future hacking (7/08/09)  http://www.networkworld.com/newsletters/sec/2009/070609sec2.html

49.     *CSIRT Management: Lessons from Other Group Postmortems (Part 2) (7/06/09)  http://www.networkworld.com/newsletters/sec/2009/070609sec1.html

50.     *CSIRT Management: Lessons from other group postmortems (7/01/09)  http://www.networkworld.com/newsletters/sec/2009/062909sec2.html

51.     Iran, disintermediation and cyberwar (6/29/09)  http://www.networkworld.com/newsletters/sec/2009/062909sec1.html

52.     Subtle pressures for security policy compliance (6/24/09)  http://www.networkworld.com/newsletters/sec/2009/062209sec2.html

53.     Working with consultants, part 4 (6/22/09)  http://www.networkworld.com/newsletters/sec/2009/062209sec1.html

54.     Working with consultants, part 3 (6/17/09)  http://www.networkworld.com/newsletters/sec/2009/061509sec2.html

55.     Working with consultants, part 2 (6/15/09)  http://www.networkworld.com/newsletters/sec/2009/061509sec1.html

56.     Working with consultants (6/10/09)  http://www.networkworld.com/newsletters/sec/2009/060809sec2.html

57.     Consensus metrics for information security (6/08/09)  http://www.networkworld.com/newsletters/sec/2009/060809sec1.html

58.     Quality control, data integrity, and the silly season (6/03/09)  http://www.networkworld.com/newsletters/sec/2009/060109sec2.html

59.     Dr. Johnston's Security Maxims: Sense and Humor (6/01/09)  http://www.networkworld.com/newsletters/sec/2009/060109sec1.html

60.     Security metrics research (5/27/09) http://www.networkworld.com/newsletters/sec/2009/052509sec2.html

61.     Phishing using scary bait (5/22/09) http://www.networkworld.com/newsletters/sec/2009/052509sec1.html

62.     *iPhone Security, Part 2 (5/20/09) http://www.networkworld.com/newsletters/sec/2009/051809sec2.html

63.     *iPhone security, Part 1 (5/19/09) http://www.networkworld.com/newsletters/sec/2009/051809sec1.html

64.     *Implications of proposed Cybersecurity Act of 2009, Part 2 (5/13/09) http://www.networkworld.com/newsletters/sec/2009/051109sec2.html

65.     *Implications of proposed Cybersecurity Act of 2009, Part 1 (5/11/09) http://www.networkworld.com/newsletters/sec/2009/051109sec1.html

66.     *Increasing Internet security for average users (5/07/09) http://www.networkworld.com/newsletters/sec/2009/050409sec2.html

67.     IA career development: Need for IA professionals will grow (5/05/09) http://www.networkworld.com/newsletters/sec/2009/050409sec1.html

68.     Locking out users gives attackers a tool for denial of service (4/30/09) http://www.networkworld.com/newsletters/sec/2009/042709sec2.html

69.     Guide to enterprise password management drafted (4/28/09) http://www.networkworld.com/newsletters/sec/2009/042709sec1.html

70.     *Flaws in 'Internet SAFETY' bill (4/23/09) http://www.networkworld.com/newsletters/sec/2009/042009sec2.html

71.     The state of spam 2009, Part 4 (4/21/09) http://www.networkworld.com/newsletters/sec/2009/042009sec1.html

72.     The state of spam 2009, Part 3 (4/16/09) http://www.networkworld.com/newsletters/sec/2009/041309sec2.html

73.     The state of spam 2009, Part 2 (4/14/09) http://www.networkworld.com/newsletters/sec/2009/041309sec1.html

74.     The state of spam 2009, Part 1 (4/09/09) http://www.networkworld.com/newsletters/sec/2009/040609sec2.html

75.     Chinese information warfare capabilities (4/07/09) http://www.networkworld.com/newsletters/sec/2009/040609sec1.html

76.     2008 was not a good year (4/02/09) http://www.networkworld.com/newsletters/sec/2009/033009sec2.html

77.     Accreditation for IA-related Web sites (3/31/09) http://www.networkworld.com/newsletters/sec/2009/033009sec1.html

78.     *Cold-boot attacks: The 'frozen cache' approach (3/26/09) http://www.networkworld.com/newsletters/sec/2009/032309sec2.html

79.     *Cold-boot attacks change the data leakage landscape (3/24/09) http://www.networkworld.com/newsletters/sec/2009/032309sec1.html

80.     As happy as a rock star in a pig pen (3/19/09) http://www.networkworld.com/newsletters/sec/2009/031609sec2.html

81.     Kraken the botnet: The ethics of counter-hacking (3/17/09) http://www.networkworld.com/newsletters/sec/2009/031609sec1.html

82.     Online auctions: Caveat Mercator Venditorque (3/12/09) http://www.networkworld.com/newsletters/sec/2009/030909sec2.html

83.     Trademarks as keywords for targeted ads? (3/10/09) http://www.networkworld.com/newsletters/sec/2009/030909sec1.html

84.     *The Internet Protectors (3/05/09) http://www.networkworld.com/newsletters/sec/2009/030209sec2.html

85.     Computer Security Handbook Fifth Edition is ready (3/03/09) http://www.networkworld.com/newsletters/sec/2009/030209sec1.html

86.     Bluetooth is not a dental condition (2/26/09) http://www.networkworld.com/newsletters/sec/2009/030209sec1.html

87.     Cell phone security (2/24/09) http://www.networkworld.com/newsletters/sec/2009/022309sec1.html

88.     Guidelines for securing IEEE 802.11i wireless networks (2/19/09) http://www.networkworld.com/newsletters/sec/2009/021609sec2.html

89.     The Habit: or There and Back Again to the NISTy Mountains (2/17/09) http://www.networkworld.com/newsletters/sec/2009/021609sec1.html

90.     NSA identifies top 25 programming errors (2/12/09) http://www.networkworld.com/newsletters/sec/2009/020909sec2.html

91.     *Is compliance with standards achieving the goal of protecting data? (2/10/09) http://www.networkworld.com/newsletters/sec/2009/020909sec1.html

92.     Confounded nonsense (2/05/09) http://www.networkworld.com/newsletters/sec/2009/020209sec2.html

93.     Linux Defenders organize to fight patent trolls (2/03/09) http://www.networkworld.com/newsletters/sec/2009/020209sec1.html

94.     *Information security and the outsider, Part 2 (1/29/09) http://www.networkworld.com/newsletters/sec/2009/012609sec2.html

95.      *Information security and the outsider, Part 1 (1/27/09) http://www.networkworld.com/newsletters/sec/2009/012609sec1.html

96.      Don’t just talk about security - do something! (1/22/09) http://www.networkworld.com/newsletters/sec/2009/011909sec2.html

97.      Users don’t get it (but it’s human nature)  (1/20/09) http://www.networkworld.com/newsletters/sec/2009/011909sec1.html

98.      Avoid conflicts over intellectual property  (1/15/09) http://www.networkworld.com/newsletters/sec/2009/011209sec2.html

99.      MITRE offers recommendation-tracker software and free one-day course (1/13/09) http://www.networkworld.com/newsletters/sec/2009/011209sec1.html

100.   Surfing brain waves: fMRI for lie detection  (1/08/09) http://www.networkworld.com/newsletters/sec/2009/010509sec2.html

101.   Abiding by the law: Blueport vs. U.S.  (1/06/09) http://www.networkworld.com/newsletters/sec/2009/010509sec1.html

 

2008

Brief History of Computer Crime. http://www.mekabay.com/opsmgmt/facilities_security.pdf

Facilities Security: How to protect your site against attacks and damage. http://www.mekabay.com/opsmgmt/facilities_security.pdf

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

* indicates collaboration with guest authors.

1.        Cornell a LIIder in cyberlaw resources (12/18/08) http://www.networkworld.com/newsletters/sec/2008/121508sec2.html

2.         Pay attention to cyberlaw (12/16/08) http://www.networkworld.com/newsletters/sec/2008/121508sec1.html

3.         Technicalinfo.net has good resources (12/11/08) http://www.networkworld.com/newsletters/sec/2008/120808sec2.html

4.         Great expectations for managing cybersecurity resources (12/09/08) http://www.networkworld.com/newsletters/sec/2008/120808sec1.html

5.         Visible Ops Security, Phase 4 (12/04/08) http://www.networkworld.com/newsletters/sec/2008/120108sec2.html

6.         Visible Ops Security, Phase 3 (12/02/08) http://www.networkworld.com/newsletters/sec/2008/120108sec1.html

7.         Visible Ops Security, Phase 2 (11/25/08) http://www.networkworld.com/newsletters/sec/2008/112408sec1.html

8.        Visible Ops Security, Phase 1 (11/20/08) http://www.networkworld.com/newsletters/sec/2008/111708sec2.html

9.        Introducing Visible Ops Security (11/18/08) http://www.networkworld.com/newsletters/sec/2008/111708sec1.html

10.     Visible Ops Handbook (11/13/08) http://www.networkworld.com/newsletters/sec/2008/111008sec2.html

11.     Swiss mix: Useful copyright resource (11/11/08) http://www.networkworld.com/newsletters/sec/2008/111008sec1.html

12.     New Web site and files for readers (11/06/08) http://www.networkworld.com/newsletters/sec/2008/110308sec2.html

13.     ‘Zero Day Threat’: Deep analysis + fun = excellent read (11/04/08) http://www.networkworld.com/newsletters/sec/2008/110308sec1.html

14.     *Copyright infringement and the CISSP, Part 2 (10/30/08) http://www.networkworld.com/newsletters/sec/2008/102708sec2.html

15.     *Copyright infringement and the CISSP, Part 1 (10/28/08) http://www.networkworld.com/newsletters/sec/2008/102708sec1.html

16.     Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 4 (10/23/08) http://www.networkworld.com/newsletters/sec/2008/102008sec2.html

17.     Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 3 (10/21/08) http://www.networkworld.com/newsletters/sec/2008/102008sec1.html

18.     Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 2 (10/16/08) http://www.networkworld.com/newsletters/sec/2008/101308sec2.html

19.     Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 1 (10/14/08) http://www.networkworld.com/newsletters/sec/2008/101308sec1.html

20.     *How to react to a fire alarm (10/09/08) http://www.networkworld.com/newsletters/sec/2008/100608sec2.html

21.     *Don’t be a Blobmonger (10/07/08) http://www.networkworld.com/newsletters/sec/2008/100608sec1.html

22.     Securing the eCampus 2008 (10/02/08) http://www.networkworld.com/newsletters/sec/2008/092908sec2.html

23.     *The data center from hell, Part 3: Lessons learned (9/30/08) http://www.networkworld.com/newsletters/sec/2008/092908sec1.html

24.     *The data center from hell, Part 2 (9/25/08) http://www.networkworld.com/newsletters/sec/2008/092208sec2.html

25.     *The data center from hell, Part 1 (9/23/08) http://www.networkworld.com/newsletters/sec/2008/092208sec1.html

26.     How not to manage lost passwords (9/18/08) http://www.networkworld.com/newsletters/sec/2008/091508sec2.html

27.     reCAPTCHA illustrates human ingenuity (9/16/08) http://www.networkworld.com/newsletters/sec/2008/091508sec1.html

28.     Bad business model: Turning subscriptions into gambling (9/11/08) http://www.networkworld.com/newsletters/sec/2008/090808sec2.html

29.     New kids advance ‘New School’ (9/09/08) http://www.networkworld.com/newsletters/sec/2008/090808sec1.html

30.     The privacy policy problem, Part 4: Reality hits home (9/04/08) http://www.networkworld.com/newsletters/sec/2008/090108sec2.html

31.     The privacy policy problem, Part 3: Opting out of opting out (9/02/08) http://www.networkworld.com/newsletters/sec/2008/090108sec1.html

32.     The privacy policy problem, Part 2: Controlling business partners (8/28/08) http://www.networkworld.com/newsletters/sec/2008/082508sec2.html

33.     The privacy policy problem, Part 1: A model policy (8/26/08) http://www.networkworld.com/newsletters/sec/2008/082508sec1.html

34.     Analyzing fundamental flaws: Opening vs. unlocking (8/21/08) http://www.networkworld.com/newsletters/sec/2008/081808sec2.html

35.     IMCD Business Backup: Prepare for all ContingenZs (8/19/08) http://www.networkworld.com/newsletters/sec/2008/081808sec1.html

36.     Encryption bottleneck: Lessons from performance analysis (8/14/08) http://www.networkworld.com/newsletters/sec/2008/081108sec2.html

37.     WEIS 2008: IPv6 illustrates resistance to new technologies (8/12/08) http://www.networkworld.com/newsletters/sec/2008/081108sec1.html

38.     WEIS 2008: Transition to IPv6 is complex (8/07/08) http://www.networkworld.com/newsletters/sec/2008/080408sec2.html

39.     WEIS 2008: Escalation and incentives for better security (8/05/08) http://www.networkworld.com/newsletters/sec/2008/080408sec1.html

40.     WEIS 2008: Security economics and European policy (7/31/08) http://www.networkworld.com/newsletters/sec/2008/072808sec2.html

41.     WEIS 2008: Do data-breach-disclosure laws reduce identity theft? (7/29/08) http://www.networkworld.com/newsletters/sec/2008/072808sec1.html

42.     *Insider controls still lacking (7/24/08) http://www.networkworld.com/newsletters/sec/2008/072108sec2.html

43.     ‘Bad Verb’: A bad user interface in action (7/22/08) http://www.networkworld.com/newsletters/sec/2008/072108sec1.html

44.     *DoD offers useful certification guidelines (7/17/08) http://www.networkworld.com/newsletters/sec/2008/071408sec2.html

45.     *Biometric blooper? (7/15/08) http://www.networkworld.com/newsletters/sec/2008/071408sec1.html

46.     Verizon data breach report, Part 4: Attack vectors (7/10/08) http://www.networkworld.com/newsletters/sec/2008/070708sec2.html

47.     Verizon data breach report, Part 3: Breach size and source (7/08/08) http://www.networkworld.com/newsletters/sec/2008/070708sec1.html

48.     Verizon data breach investigations report, Part 2: Outsider attacks (7/03/08) http://www.networkworld.com/newsletters/sec/2008/063008sec2.html

49.     Verizon data breach investigations report, Part 1 (7/01/08) http://www.networkworld.com/newsletters/sec/2008/063008sec1.html

50.     Improved security raises threat to the unimproved (6/26/08) http://www.networkworld.com/newsletters/sec/2008/062308sec1.html

51.     *Extreme weather and business continuity (6/24/08) http://www.networkworld.com/newsletters/sec/2008/062308sec1.html

52.     Keep pace with vulnerabilities (6/19/08) http://www.networkworld.com/newsletters/sec/2008/061608sec2.html

53.     Infowar resources (6/17/08) http://www.networkworld.com/newsletters/sec/2008/061608sec1.html

54.     LBB2E: Joel Dubin updates his pocket guide (6/12/08) http://www.networkworld.com/newsletters/sec/2008/060908sec2.html

55.     Master of Science in Business Continuity Management (6/10/08) http://www.networkworld.com/newsletters/sec/2008/060908sec1.html

56.     10 tips for moving e-discovery into the enterprise (6/05/08) http://www.networkworld.com/newsletters/sec/2008/060208sec2.html

57.     Useful guides to e-mail archiving (6/03/08) http://www.networkworld.com/newsletters/sec/2008/060208sec1.html

58.     Workshop on Economics of Information Security (5/29/08) http://www.networkworld.com/newsletters/sec/2008/052608sec2.html

59.     Bordering on insanity (5/27/08) http://www.networkworld.com/newsletters/sec/2008/052608sec1.html

60.     Crossing borders with corporate data (5/22/08) http://www.networkworld.com/newsletters/sec/2008/051908sec2.html

61.     Expanding roles for the CISO (5/20/08) http://www.networkworld.com/newsletters/sec/2008/051908sec1.html

62.     The CISO as strategic resource (5/15/08) http://www.networkworld.com/newsletters/sec/2008/051208sec2.html

63.     Building a bridge from the CISO to the CEO (5/13/08) http://www.networkworld.com/newsletters/sec/2008/051208sec1.html

64.     Identity Finder helps prevent identity theft (5/08/08) http://www.networkworld.com/newsletters/sec/2008/050508sec2.html

65.     Central Ohio InfoSec Summit coming up soon (5/06/08) http://www.networkworld.com/newsletters/sec/2008/050508sec1.html

66.     Zapping ‘zappers’ (5/01/08) http://www.networkworld.com/newsletters/sec/2008/042808sec2.html

67.     Zap! You’re under arrest (4/29/08) http://www.networkworld.com/newsletters/sec/2008/042808sec1.html

68.     Scan ScanSafe’s annual report for heuristic experience (4/24/08) http://www.networkworld.com/newsletters/sec/2008/042108sec2.html

69.     *Comprehensive security needed to prevent printer hacking (4/22/08) http://www.networkworld.com/newsletters/sec/2008/042108sec1.html

70.     *Your printer: An open door for hackers? (4/17/08) http://www.networkworld.com/newsletters/sec/2008/041408sec2.html

71.     *Managing CSIRT burnout and turnover: a case study, Part 3 (4/15/08) http://www.networkworld.com/newsletters/sec/2008/041408sec1.html

72.     *Managing CSIRT burnout and turnover: a case study, Part 2 (4/10/08) http://www.networkworld.com/newsletters/sec/2008/040708sec2.html

73.     *Managing CSIRT burnout and turnover: a case study, Part 1 (4/08/08) http://www.networkworld.com/newsletters/sec/2008/040708sec1.html

74.     April Fool’s lessons (4/03/08) http://www.networkworld.com/newsletters/sec/2008/033108sec2.html

75.     MessageLabs Intelligence Reports make good reading (4/01/08) http://www.networkworld.com/newsletters/sec/2008/033108sec1.html

76.     The state of spam: An interview with Jamie de Guerre, Part 2 (3/27/08) http://www.networkworld.com/newsletters/sec/2008/0324sec2.html

77.     The state of spam: An interview with Jamie de Guerre, Part 1 (3/25/08) http://www.networkworld.com/newsletters/sec/2008/0324sec1.html

78.     Security roles made brilliantly clear (3/20/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2.html

79.     Process over presumption: The Vermont encryption key decision (3/18/08) http://www.networkworld.com/newsletters/sec/2008/0317sec1.html

80.     Chapters in ‘Information Roles & Responsibilities Made Easy’ (3/17/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2a.html

81.     Charles Cresson Wood’s list of common mistakes you should avoid (3/17/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2b.html

82.     Protecting your SSN and your reading habits (3/13/08) http://www.networkworld.com/newsletters/sec/2008/0310sec2.html

83.     Why identity-theft rates are so high (3/11/08) http://www.networkworld.com/newsletters/sec/2008/0310sec1.html

84.     Defending against identity theft: Identity Guard (3/06/08) http://www.networkworld.com/newsletters/sec/2008/0303sec2.html

85.     Defending against identity theft: LifeLock (3/04/08) http://www.networkworld.com/newsletters/sec/2008/0303sec1.html

86.     *Windows Server 2008: The shape of the world to come (2/28/08) http://www.networkworld.com/newsletters/sec/2008/0225sec2.html

87.     Service management metrics significant for CSIRTs (2/26/08) http://www.networkworld.com/newsletters/sec/2008/0225sec1.html

88.     *Two-factor credit-card safety for online transactions (2/21/08) http://www.networkworld.com/newsletters/sec/2008/0218sec2.html

89.     Blurred lines: Reliability of polygraph examinations (2/19/08) http://www.networkworld.com/newsletters/sec/2008/0218sec1.html

90.     Drawing the lines: Applications of the polygraph (2/14/08) http://www.networkworld.com/newsletters/sec/2008/0211sec2.html

91.     Poly want a hacker? (2/12/08) http://www.networkworld.com/newsletters/sec/2008/0211sec1.html

92.     Crystal Ball 2008 in Montreal (2/07/08) http://www.networkworld.com/newsletters/sec/2008/0204sec2.html

93.     CISSP-holders save time and money toward degree (2/05/08) http://www.networkworld.com/newsletters/sec/2008/0204sec1.html

94.     Getting CERIAS about security (1/31/08) http://www.networkworld.com/newsletters/sec/2008/0128sec2.html

95.     Handbook of Computer Networks: Another Bidgoli goldmine (1/29/08) http://www.networkworld.com/newsletters/sec/2008/0128sec1.html

96.     ‘Halting State’ a good read for security geeks (1/24/08) http://www.networkworld.com/newsletters/sec/2008/0121sec2.html

97.     Identity theft: The Shadowcrew case (1/22/08) http://www.networkworld.com/newsletters/sec/2008/0121sec1.html

98.     Identity theft is a burden on the victim (1/17/08) http://www.networkworld.com/newsletters/sec/2008/0114sec2.html

99.     A new Outlook (file) (1/15/08) http://www.networkworld.com/newsletters/sec/2008/0114sec1.html

100.  Controlling outbound e-mail (1/10/08) http://www.networkworld.com/newsletters/sec/2008/0107sec2.html

101.  Don’t let e-mail impair productivity (1/08/08) http://www.networkworld.com/newsletters/sec/2008/0107sec1.html

102.  *Bank of America authenticates via mobile phone (1/03/08) http://www.networkworld.com/newsletters/sec/2008/1231sec2.html

2007

Intellectual property developments in 2007. In: 2007 Year in Review, Peltier Associates, pp 36-39. http://www.peltierassociates.com/index.php?option=com_docman&task=cat_view&gid=64&Itemid=55

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

1.        Howard Schmidt patrols cyberspace (12/20/07) http://www.networkworld.com/newsletters/sec/2007/1217sec2.html

2.        Federal News Radio spotlights security (12/18/07) http://www.networkworld.com/newsletters/sec/2007/1217sec1.html

3.        *Reducing employee turnover: The STCC case study, Part 2 (12/13/07) http://www.networkworld.com/newsletters/sec/2007/1210sec2.html

4.        *Reducing employee turnover: The STCC case study, Part 1 (12/11/07) http://www.networkworld.com/newsletters/sec/2007/1210sec1.html

5.        Podcasts busting out at CERT/CC (12/06/07) http://www.networkworld.com/newsletters/sec/2007/1203sec2.html

6.        Privaris offers multi-use biometric token (12/04/07) http://www.networkworld.com/newsletters/sec/2007/1203sec1.html

7.        Free password generators, Part 3 (11/29/07) http://www.networkworld.com/newsletters/sec/2007/1126sec2.html

8.        Free password generators, Part 2 (11/27/07) http://www.networkworld.com/newsletters/sec/2007/1126sec1.html

9.        Free password generators, Part 1 (11/20/07) http://www.networkworld.com/newsletters/sec/2007/1119sec1.html

10.     ISACA Winnipeg’s bestseller list: Build Security In (11/15/07) http://www.networkworld.com/newsletters/sec/2007/1112sec2.html

11.     *Social engineering in penetration testing: Overload and fascination (11/13/07) http://www.networkworld.com/newsletters/sec/2007/1112sec1.html

12.     *Social engineering in penetration testing: Intimidation (11/08/07) http://www.networkworld.com/newsletters/sec/2007/1105sec2.html

13.     Social engineering in penetration testing: Postmortem (11/06/07) http://www.networkworld.com/newsletters/sec/2007/1105sec1.html

14.     Social engineering in penetration testing: Planning (11/01/07) http://www.networkworld.com/newsletters/sec/2007/1029sec2.html

15.     *Social engineering in penetration testing: Analysis (10/30/07) http://www.networkworld.com/newsletters/sec/2007/1029sec1.html

16.     *Social engineering in penetration testing: Cases (10/25/07) http://www.networkworld.com/newsletters/sec/2007/1022sec2.html

17.     Incident response: Don’t lie (10/23/07) http://www.networkworld.com/newsletters/sec/2007/1022sec1.html

18.     Hidden costs of passwords. (10/18/07) http://www.networkworld.com/newsletters/sec/2007/1015sec2.html

19.     Jason Holloway’s Holy Grail (10/16/07) http://www.networkworld.com/newsletters/sec/2007/1015sec1.html

20.     Password management: Facing the problem (10/11/07) http://www.networkworld.com/newsletters/sec/2007/1008sec2.html

21.     The way we frame risks influences perception (10/09/07) http://www.networkworld.com/newsletters/sec/2007/1008sec1.html

22.     Why passwords are passé (10/04/07) http://www.networkworld.com/newsletters/sec/2007/1001sec2.html