PUBLI
Michel E. Kabay, PhD, CISSP-ISSMP
InfoSec Reviews
InfoSec Perception newsletter. * indicates collaboration with guest authors.
http://www.infosecreviews.com/perception
1.
Coping with a Compromised E-mail Account (2011-12-23) http://infosecreviews.com/perception/?p=112
2.
*Macintosh Malware Erupts (2011-12-16) http://infosecreviews.com/perception/?p=107
3.
Checking for Data-Conversion Errors (2011-12-09) http://infosecreviews.com/perception/?p=94
4.
Free Slide Sets for Introduction to IA (2011-12-02) http://infosecreviews.com/perception/?p=89
5.
All We Want are the Facts, Ma’am (2011-11-27) http://infosecreviews.com/perception/?p=84
6.
Ira Winkler is Wrong: Undergraduate Degrees in Information Assurance are
Worthwhile (2011-11-18) http://infosecreviews.com/perception/?p=65
7.
Virtual Meetings for IA Professionals (2011-11-11) http://infosecreviews.com/perception/?p=59
8.
Archive of NWSS Articles Now Online (2011-11-04) http://infosecreviews.com/perception/?p=51
9.
News of the World Hacking Debacle: Groupthink in Action (2011-10-28) http://infosecreviews.com/perception/?p=42
10. HTCIA Membership Rules: A Debate (2011-10-21)
http://infosecreviews.com/perception/?p=25
11. Hurricane Andrew (August 1992):
Organizational Issues (2011-10-17) http://infosecreviews.com/perception/?p=13
12. Hurricane Andrew (August 1992):
Lessons Learned (2011-10-10) http://infosecreviews.com/perception/?p=10
13. Hurricane Andrew (August 1992): A
Wake-up Call for Emergency Preparedness (2011-10-07) http://infosecreviews.com/perception/?p=19
14. Credo (2011-09-19) http://infosecreviews.com/perception/?page_id=8
Network World
Security Strategies newsletter http://www.networkworld.com/newsletters/sec/
There are usually 8-10 articles in press at any time. These columns have ~55,000 subscribers (Nov 2009). *
indicates collaboration with guest authors.
Archives of original versions in PDF at http://www.mekabay.com/nwf
1.
Vale Atque Ave (09/28/11) http://www.networkworld.com/newsletters/sec/2011/092611sec2.html
2.
See you anon: Reflections on online
anonymity (09/26/11) http://www.networkworld.com/newsletters/sec/2011/092611sec1.html
3.
Coping with HIPAA regulations:
Electronic faxes (09/21/11) http://www.networkworld.com/newsletters/sec/2011/091911sec2.html
4.
HIPAA on phones, faxes and e-mail
(09/19/11) http://www.networkworld.com/newsletters/sec/2011/091911sec1.html
5.
Homeland Security Digital Library –
Priceless resource (09/14/11) http://www.networkworld.com/newsletters/sec/2011/091211sec2.html
6.
Velocihackers and Tyrannosaurus
superior (09/12/11) http://www.networkworld.com/newsletters/sec/2011/091211sec1.html
7.
Justifying spontaneous computer
seizures (09/07/11) http://www.networkworld.com/newsletters/sec/2011/090511sec2.html
8.
Search and seizure: No
Fourth-Amendment rights at Borders (09/06/11) http://www.networkworld.com/newsletters/sec/2011/090511sec1.html
9.
Information assurance must adapt to
changing technology (09/01/11) http://www.networkworld.com/newsletters/sec/2011/082911sec2.html
10. COBIT
5: New evolution of COBIT guidance (08/29/11) http://www.networkworld.com/newsletters/sec/2011/082911sec1.html
11. NICE
Move: Draft National Initiative for Cybersecurity Education (08/24/11) http://www.networkworld.com/newsletters/sec/2011/082211sec2.html
12. Synchronizing
software with ViceVersa (08/22/11) http://www.networkworld.com/newsletters/sec/2011/082211sec1.html
13. Synchronization
software: Synctoy revisited (08/17/11) http://www.networkworld.com/newsletters/sec/2011/081511sec2.html
14. *The
BP case: Online reputation management (08/15/11) http://www.networkworld.com/newsletters/sec/2011/081511sec1.html
15. *Dishonest
methods involving online reputation management (08/10/11) http://www.networkworld.com/newsletters/sec/2011/080811sec2.html
16. *Online
reputation management: Manipulating search engines (08/08/11) http://www.networkworld.com/newsletters/sec/2011/080811sec1.html
17. Disintermediation
affects reputation (08/03/11) http://www.networkworld.com/newsletters/sec/2011/080111sec2.html
18. *Planes,
cats & mosquitos: The power of metaphor (08/01/11) http://www.networkworld.com/newsletters/sec/2011/080111sec1.html
19. Sexting:
Loss of control = Embarrassment, bullying & potential prosecution
(07/27/11) http://www.networkworld.com/newsletters/sec/2011/072511sec2.html
20. Sexting:
Pervasive cameras + Internet = Autoporn (07/25/11) http://www.networkworld.com/newsletters/sec/2011/072511sec1.html
21. Accessible
backups, not recursive backups (07/20/11) http://www.networkworld.com/newsletters/sec/2011/071811sec2.html
22. *Can
you comply with court orders for data from the cloud? (07/18/11) http://www.networkworld.com/newsletters/sec/2011/071811sec1.html
23. *Is
your company ready for legal holds and compliance with mobility and the cloud?
(07/13/11) http://www.networkworld.com/newsletters/sec/2011/071111sec2.html
24. *Does
your security policy reflect mobility and cloud security? (07/11/11) http://www.networkworld.com/newsletters/sec/2011/071111sec1.html
25. *Is
your company ready for 4G mobile connectivity? (07/06/11) http://www.networkworld.com/newsletters/sec/2011/070411sec2.html
26. *Is
the operating system dead? (07/04/11) http://www.networkworld.com/newsletters/sec/2011/070411sec1.html
27. *Don't
MISs Bidgoli's Second Edition: Even Better (06/29/11) http://www.networkworld.com/newsletters/sec/2011/062711sec2.html
28. Too
much access to the Internet? (06/27/11) http://www.networkworld.com/newsletters/sec/2011/062711sec1.html
29. Securing the eCampus 2011 (06/22/11) http://www.networkworld.com/newsletters/sec/2011/062011sec2.html
30. Experts risk indigestion without RISKS DIGEST (06/20/11) http://www.networkworld.com/newsletters/sec/2011/062011sec1.html
31. Don't
dismiss community college grads with degrees in information assurance
(06/15/11) http://www.networkworld.com/newsletters/sec/2011/061311sec2.html
32. All
the news that hits the print (06/13/11) http://www.networkworld.com/newsletters/sec/2011/061311sec1.html
33. Overreaction and Underreaction (06/08/11) http://www.networkworld.com/newsletters/sec/2011/060611sec2.html
34. Incomprehensible spam (06/06/11) http://www.networkworld.com/newsletters/sec/2011/060611sec1.html
35. Check the terms of service before you order (06/01/11) http://www.networkworld.com/newsletters/sec/2011/053011sec2.html
36. *Hidden URLs in phone and tablet browsers (05/30/11) http://www.networkworld.com/newsletters/sec/2011/053011sec1.html
Münchhausen Syndrome by Internet: Deceiving the sympathetic (05/25/11) http://www.networkworld.com/newsletters/sec/2011/052311
38. Winding one's way towards insanity (05/23/11) http://www.networkworld.com/newsletters/sec/2011/052311sec1.html
39. *Patchwork
solution: Satellite Internet services in rural communities (05/18/11) http://www.networkworld.com/newsletters/sec/2011/051611sec2.html
40. *The
CEO and his hardware token: A lesson learned (05/16/11) http://www.networkworld.com/newsletters/sec/2011/051611sec1.html
41. *University professors to magazine publishers: We're not chopped liver (05/11/11) http://www.networkworld.com/newsletters/sec/2011/050911sec2.html
42. *Native intelligence: Awareness and humor (05/09/11) http://www.networkworld.com/newsletters/sec/2011/050911sec1.html
43. *Controlling the subversive spreadsheet (05/04/11) http://www.networkworld.com/newsletters/sec/2011/050211sec2.html
44. WikiLeaks - Responsibility or vandalism? (05/02/11) http://www.networkworld.com/newsletters/sec/2011/050211sec1.html
45. The politics of cyberspace: Disintermediation vs. confidentiality (04/27/11) http://www.networkworld.com/newsletters/sec/2011/042511sec2.html
46. *Benefits and risks of nanotechnology (04/25/11) http://www.networkworld.com/newsletters/sec/2011/042511sec1.html
47. *Benefits and risks of DNA-based computing (04/20/11) http://www.networkworld.com/newsletters/sec/2011/041811sec2.html
48. *Computing naturally: Benefits and risks of genetic algorithms (04/18/11) http://www.networkworld.com/newsletters/sec/2011/041811sec1.html
49. *Vaporizing communications: Splitting the message (04/13/11) http://www.networkworld.com/newsletters/sec/2011/041111sec2.html
50. *Electronic messaging inherently insecure (04/11/11) http://www.networkworld.com/newsletters/sec/2011/041111sec1.html
51. Discretion in e-mail criticism (04/06/11) http://www.networkworld.com/newsletters/sec/2011/040411sec2.html
52. Apology to Samsung: We blew it (04/04/11) http://www.networkworld.com/newsletters/sec/2011/040411-sec-apology.html
53. *Samsung laptops clean: No keylogger or spyware of any kind found (04/04/11) http://www.networkworld.com/newsletters/sec/2011/040411-sec-stephenson.html
54. UPDATE: Samsung keylogger is false alarm (03/30/11) http://www.networkworld.com/newsletters/sec/2011/032811sec2.html
55. *The Russian Cybermafia: RBN & the RBS WorldPay attack (03/28/11) http://www.networkworld.com/newsletters/sec/2011/032811sec1.html
56. *The Russian Cybermafia: Boa Factory & CarderPlanet (03/23/11) http://www.networkworld.com/newsletters/sec/2011/032111sec2.html
57. *The Russian cybermafia: Beginnings (03/21/11) http://www.networkworld.com/newsletters/sec/2011/032111sec1.html
58. Discretion when wearing a uniform (03/16/11) http://www.networkworld.com/newsletters/sec/2011/031411sec2.html
59. Discretion on the job (03/14/11) http://www.networkworld.com/newsletters/sec/2011/031411sec1.html
60. Backups as an anti-plagiarism tool (03/09/11) http://www.networkworld.com/newsletters/sec/2011/030711sec2.html
61. Web design glitches affect utility (03/07/11) http://www.networkworld.com/newsletters/sec/2011/030711sec1.html
62. *Join the club: Changing the status quo for security (03/02/11) http://www.networkworld.com/newsletters/sec/2011/022811sec2.html
63. *Changing the status quo for security: Turn it on (02/28/11) http://www.networkworld.com/newsletters/sec/2011/022811sec1.html
64. Securing road warriors' communications (02/23/11) http://www.networkworld.com/newsletters/sec/2011/022111sec2.html
65. Road warriors: Secure your laptops (02/21/11) http://www.networkworld.com/newsletters/sec/2011/022111sec1.html
66. *Threat actors and victims (02/16/11) http://www.networkworld.com/newsletters/sec/2011/021411sec2.html
67. *Breaches and vectors (02/14/11) http://www.networkworld.com/newsletters/sec/2011/021411sec1.html
68. *The leaking vault: Five years of data breaches (02/09/11) http://www.networkworld.com/newsletters/sec/2011/020711sec2.html
69. History and governance: the politics of cyberspace (02/07/11) http://www.networkworld.com/newsletters/sec/2011/020711sec1.html
70. The politics of cyberspace (02/02/11) http://www.networkworld.com/newsletters/sec/2011/013111sec2.html
71. Costs of delayed validation (01/31/11) http://www.networkworld.com/newsletters/sec/2011/013111sec1.html
72. *Using cloud computing and storage for business continuity (01/26/11) http://www.networkworld.com/newsletters/sec/2011/012411sec2.html
73. * Business continuity planning still not widely implemented (01/24/11) http://www.networkworld.com/newsletters/sec/2011/012411sec1.html
74. Can the government prevent a DDoS attack? http://www.networkworld.com/newsletters/sec/2011/011710sec2.html
75. Cybercrime and the U.S. criminal justice system (01/17/11) http://www.networkworld.com/newsletters/sec/2011/011711sec1.html
76. Handbook of technology management http://www.networkworld.com/newsletters/sec/2011/011011sec2.html
77. Personal Web site updated: New sections, content http://www.networkworld.com/newsletters/sec/2011/011011sec1.html
78. Software asset management and security http://www.networkworld.com/newsletters/sec/2011/010311sec2.html
79. IP
theft is illegal, unethical and costly http://www.networkworld.com/newsletters/sec/2011/010311sec1.html
Network World
Security Strategies newsletter http://www.networkworld.com/newsletters/sec/
* indicates collaboration with guest authors.
1.
Speech may be free, but it isn't
always wise (12/22/10) http://www.networkworld.com/newsletters/sec/2010/122010sec2.html
2.
Free speech issues: Controlling
content in college newspapers (12/20/10) http://www.networkworld.com/newsletters/sec/2010/122010sec1.html
3.
Comment spam: Ending anonymity?
(12/15/10) http://www.networkworld.com/newsletters/sec/2010/121310sec2.html
4.
Freedom of speech vs. monomaniacs and
spammers (12/13/10) http://www.networkworld.com/newsletters/sec/2010/121310sec1.html
5.
Regulating content in private forums
(12/08/10) http://www.networkworld.com/newsletters/sec/2010/120610sec2.html
6.
Journalistic responsibility in the
age of the Internet telephone game (12/06/10) http://www.networkworld.com/newsletters/sec/2010/120610sec1.html
7.
*Significant distinctions in mobile
management and security (12/01/10) http://www.networkworld.com/newsletters/sec/2010/112910sec2.html
8.
*Mobile management and security:
Keeping the dark side at bay (11/29/10) http://www.networkworld.com/newsletters/sec/2010/112910sec1.html
9.
*Products and privacy: Social media
are changing the litigation game (11/22/10) http://www.networkworld.com/newsletters/sec/2010/112210sec1.html
10. The X-Force experience in SCADA security and terrorism (11/17/10) http://www.networkworld.com/newsletters/sec/2010/111510sec2.html
11. SCADA security and terrorism: The X-Force Report (11/15/10) http://www.networkworld.com/newsletters/sec/2010/111510sec1.html
12. *Security reality vs. feelings: Steinberger on Schneier (11/10/10) http://www.networkworld.com/newsletters/sec/2010/110810sec2.html
13. *Use beta testing to avoid product crashes (11/08/10) http://www.networkworld.com/newsletters/sec/2010/110810sec1.html
14. A security analysis of Don't ask, don't tell: Prescription for blackmail (11/03/10) http://www.networkworld.com/newsletters/sec/2010/110110sec2.html
15. Security in the electric power industry: Riptech Report of 2001 (11/01/10) http://www.networkworld.com/newsletters/sec/2010/110110sec1.html
16. *SCADA security: A real-world case study (10/25/10) http://www.networkworld.com/newsletters/sec/2010/102510sec1.html
17. Entertaining risk analysis (10/20/10) http://www.networkworld.com/newsletters/sec/2010/101810sec2.html
18. *Tap dancing around the Fourth Amendment (10/18/10) http://www.networkworld.com/newsletters/sec/2010/101810sec1.html
19. *Encryption for the Internet and for telephony (10/13/10) http://www.networkworld.com/newsletters/sec/2010/101110sec2.html
20. Lesson in a Haystack: Kerckhoff’s principle in action (10/11/10) http://www.networkworld.com/newsletters/sec/2010/101110sec1.html
21. Lesson in a haystack: Idealists take on the theocracy (10/06/10) http://www.networkworld.com/newsletters/sec/2010/100410sec2.html
22. *Social Engineering via Social networking (10/04/10) http://www.networkworld.com/newsletters/sec/2010/100410sec1.html
23. *Professionals: Don’t use Facebook and Twitter (09/29/10) http://www.networkworld.com/newsletters/sec/2010/092710sec2.html
24. *Privacy issues in social-networking sites (09/27/10) http://www.networkworld.com/newsletters/sec/2010/092710sec1.html
25. A
laundry list of power industry incidents to learn from (09/22/10) http://www.networkworld.com/newsletters/sec/2010/092010sec2.html
26. Increasing
security of SCADA systems in power industry (09/20/10) http://www.networkworld.com/newsletters/sec/2010/092010sec1.html
27. Attacks
on power systems: Industry/government consensus (09/15/10) http://www.networkworld.com/newsletters/sec/2010/091310sec2.html
28. Attacks
on power systems: Hackers, malware (09/13/10) http://www.networkworld.com/newsletters/sec/2010/091310sec1.html
29. Attacks
on power systems: Data leakage, espionage, insider threats, sabotage (09/08/10)
http://www.networkworld.com/newsletters/sec/2010/090610sec2.html
30. Electric
power industry as critical infrastructure (09/06/10) http://www.networkworld.com/newsletters/sec/2010/090610sec1.html
31. Cyber
situational awareness for the electric power industry (09/01/10) http://www.networkworld.com/newsletters/sec/2010/083010sec2.html
32. Sophos
booklet helpful in corporate security awareness (08/25/10) http://www.networkworld.com/newsletters/sec/2010/082310sec2.html
33. SOPHOSticated
advice about safe Web browsing
(08/23/10) http://www.networkworld.com/newsletters/sec/2010/082310sec1.html
34. Proposing
a secure global opt-out list (08/18/10) http://www.networkworld.com/newsletters/sec/2010/081610sec2.html
35. Clamping
down on spammers (08/16/10) http://www.networkworld.com/newsletters/sec/2010/081610sec1.html
36. *Keep
your network management rules current (08/11/10) http://www.networkworld.com/newsletters/sec/2010/080910sec2.html
37. Recipients
not the only victims of spammers (08/09/10) http://www.networkworld.com/newsletters/sec/2010/080210sec2.html
38. *Challenges
of software quality assurance (08/04/10) http://www.networkworld.com/newsletters/sec/2010/080210sec2.html
39. *Software
shouldn't fail (08/02/10) http://www.networkworld.com/newsletters/sec/2010/080210sec1.html
40. *Automated
software quality assurance really matters (07/28/10) http://www.networkworld.com/newsletters/sec/2010/072610sec2.html
41. *Enterprise
UTM vs next-generation firewalls (07/26/10) http://www.networkworld.com/newsletters/sec/2010/072610sec1.html
42. Unified
security (07/21/10) http://www.networkworld.com/newsletters/sec/2010/071910sec2.html
43. Preventing identity theft (07/19/10) http://www.networkworld.com/newsletters/sec/2010/071910sec1.html
44. Check
your credit-card bills (07/14/10) http://www.networkworld.com/newsletters/sec/2010/071210sec2.html
45. Anonymous
malice and e-mail protocol (07/12/10) http://www.networkworld.com/newsletters/sec/2010/071210sec1.html
46. *Bidgoli's
new MIS 2010 textbook a gold mine (07/07/10) http://www.networkworld.com/newsletters/sec/2010/070510sec2.html
47. Academic
fraud: The biology lab and the French paper (07/05/10) http://www.networkworld.com/newsletters/sec/2010/070510sec1.html
48. Essay
forensics: The German caper (06/30/10) http://www.networkworld.com/newsletters/sec/2010/062810sec2.html
49. Fraudulent
term papers: A breach of authenticity (06/28/10) http://www.networkworld.com/newsletters/sec/2010/062810sec1.html
50. Carry
out routine internal audits of communications (06/23/10) http://www.networkworld.com/newsletters/sec/2010/062110sec2.html
51. Michael
Powell gives The Home Depot the finger (guard) (06/21/10) http://www.networkworld.com/newsletters/sec/2010/062110sec1.html
52. Doing
the right thing on the 'Net (06/16/10) http://www.networkworld.com/newsletters/sec/2010/061410sec2.html
53. Using
e-mail safely and well (06/14/10) http://www.networkworld.com/newsletters/sec/2010/061410sec1.html
54. Socializing
safely via the Internet (06/09/10) http://www.networkworld.com/newsletters/sec/2010/060710sec2.html
55. Get
out there and teach: Integrating cyberspace into our moral universe (06/07/10) http://www.networkworld.com/newsletters/sec/2010/060710sec1.html
56. Photo
forensics: Identifying faked pictures (06/02/10) http://www.networkworld.com/newsletters/sec/2010/053110sec2.html
57. *Talking
with a Forbes blogger about firewalls (05/31/10) http://www.networkworld.com/newsletters/sec/2010/053110sec1.html
58. *The
firewall: Interview with blogger Daniel Kennedy (05/26/10) http://www.networkworld.com/newsletters/sec/2010/052410sec2.html
59. Self-replicating
nanobots (05/24/10) http://www.networkworld.com/newsletters/sec/2010/052410sec1.html
60. Nanotech
will be focus for future criminal hackers (05/19/10) http://www.networkworld.com/newsletters/sec/2010/051710sec2.html
61. *Legal
risks with virtual currencies in online games (05/17/10) http://www.networkworld.com/newsletters/sec/2010/051710sec1.html
62. *Real
legal issues with virtual currencies (05/12/10) http://www.networkworld.com/newsletters/sec/2010/051010sec2.html
63. Domestic
politics are important in dealing with Internet censorship in China (05/12/10) http://www.networkworld.com/newsletters/sec/2010/051010sec1.html
64. Internet
censorship in China: The conventional view (5/05/10) http://www.networkworld.com/newsletters/sec/2010/050310sec2.html
65. Automated
testing a must for effective SQA (5/03/10) http://www.networkworld.com/newsletters/sec/2010/050310sec1.html
66. Software inspections and debugging a must for effective SQA (4/28/10) http://www.networkworld.com/newsletters/sec/2010/042610sec2.html
67. Canning
the spammers: Operators' licenses? For computers?? (4/26/10) http://www.networkworld.com/newsletters/sec/2010/042610sec1.html
68. Fundamental causes of spam (4/21/10) http://www.networkworld.com/newsletters/sec/2010/041910sec2.html
69. Canning the spammers: The problem is not improving (4/19/10) http://www.networkworld.com/newsletters/sec/2010/041910sec1.html
70. WikiLeaks and Iceland battle for Internet freedom (4/14/10) http://www.networkworld.com/newsletters/sec/2010/041210sec2.html
71. The Battle for Internet Freedom in Italy (4/12/10) http://www.networkworld.com/newsletters/sec/2010/041210sec1.html
72. Who's responsible in the battle for Internet freedom (04/07/10) http://www.networkworld.com/newsletters/sec/2010/040510sec2.html
73. Defamation
and the battle for Internet freedom (04/05/10) http://www.networkworld.com/newsletters/sec/2010/040510sec1.html
74. Postmortem:
Broken feedback loops in critical systems (03/31/10) http://www.networkworld.com/newsletters/sec/2010/032910sec2.html
75. Restrictions
on intellectual property (03/29/10) http://www.networkworld.com/newsletters/sec/2010/032910sec1.html
76. The
battle for Internet freedom: Obscenity and child pornography (03/24/10) http://www.networkworld.com/newsletters/sec/2010/032210sec2.html
77. The
battle for Internet freedom (03/22/10) http://www.networkworld.com/newsletters/sec/2010/032210sec1.html
78. Pushing
for software quality assurance (03/17/10) http://www.networkworld.com/newsletters/sec/2010/031510sec2.html
79. *Practical priorities in PCI DSS logging (3/10/10) http://www.networkworld.com/newsletters/sec/2010/030810sec2.html
80. *PCI DSS logging: A must for compliance (3/08/10) http://www.networkworld.com/newsletters/sec/2010/030810sec1.html
81. Software development and quality assurance (3/08/10) http://www.networkworld.com/newsletters/sec/2010/031510sec1.html
82. Texting on mobile phones while driving (3/03/10) http://www.networkworld.com/newsletters/sec/2010/030110sec2.html
83. Texting on mobile phones while driving: Duhhh (3/01/10) http://www.networkworld.com/newsletters/sec/2010/030110sec1.html
84. Regulations and resolutions of talking on mobile phones while driving (2/24/10) http://www.networkworld.com/newsletters/sec/2010/022210sec2.html
85. Documented dangers of talking on mobile phones while driving (2/22/10) http://www.networkworld.com/newsletters/sec/2010/022210sec1.html
86. Is there a best certification? (2/17/10) http://www.networkworld.com/newsletters/sec/2010/021510sec2.html
87. Mandatory certification & licensing for IA professionals (2/15/10) http://www.networkworld.com/newsletters/sec/2010/021510sec1.html
88. Context for discussions of mandatory certification (2/10/10) http://www.networkworld.com/newsletters/sec/2010/020810sec2.html
89. More evidence of value of security certification (2/08/10) http://www.networkworld.com/newsletters/sec/2010/020810sec1.html
90. Do IA certifications improve hiring, promotion & salaries? (2/03/10) http://www.networkworld.com/newsletters/sec/2010/020110sec2.html
91. Fact, fiction and the Internet (2/01/10) http://www.networkworld.com/newsletters/sec/2010/020110sec1.html
92. IMPERVAious to common sense (1/27/10) http://www.networkworld.com/newsletters/sec/2010/012510sec2.html
93. Informing victims of identity theft (1/25/10) http://www.networkworld.com/newsletters/sec/2010/012510sec1.html
94. IC3 includes identity theft in statistics (1/21/10) http://www.networkworld.com/newsletters/sec/2010/011810sec2.html
95. Windows 7 troubles and business continuity (1/19/10) http://www.networkworld.com/newsletters/sec/2010/011810sec1.html
96. *Pirate's cove: Defenses (1/13/10) http://www.networkworld.com/newsletters/sec/2010/011110sec2.html
97. *Pirate's cove: The eastern havens (1/11/10) http://www.networkworld.com/newsletters/sec/2010/011110sec1.html
98. *Pirate's Cove: The western havens (1/06/10) http://www.networkworld.com/newsletters/sec/2010/010410sec2.html
99. *Pirate's Cove: Setting the stage (1/04/10) http://www.networkworld.com/newsletters/sec/2010/010410sec1.html
Bosworth, S., M. E. Kabay, & E. Whyne (2009), editors. Computer Security Handbook, 5th Edition. Wiley (ISBN 0-471-71652-9). Two volumes; 2040 pp. Index. Chapters:
2. Kabay, M. E.: History of Computer Crime
10. Kabay, M. E.: Understanding Studies and Surveys of Computer Crime
15. Cobb, C., S. Cobb & M. E. Kabay: Penetrating Systems and Networks
38. Nichols, L. E., M. E. Kabay, & T. Braithwaite: Writing Secure Code
44. Kabay, M. E. & B. Robertson: Security Policy Guidelines
47. Kabay, M. E., D. Holden & Myles Walsh: Operations Security and Production Controls
48. Kabay, M. E. & N. Takacs: E-Mail and Internet Use Policies
50. Kabay, M. E., B. Robertson, M. Akella & D. T. Lang: Using Social Psychology to Implement Security Policies
56. Miora, M., M. E. Kabay & B. Cowens: Computer Security Incident Response Teams
57. Kabay, M. E. & D. Holden: Data Backups and Archives
63. Hallberg, C., M. E. Kabay, B. Robertson & A. Hutt: Management Responsibilities and Liabilities
66. Kabay, M. E. & S. Kelley: Developing Security Policies
70. Kabay, M. E., E. Salveggio & R. Guess: Anonymity and Identity in Cyberspace
74. Christian, C., M. E. Kabay, K. Henry & S. Schneider: Professional Certification and Training in Information Assurance
White Papers on Web Site
1. Protecting Your Reputation in Cyberspace. http://www.mekabay.com/infosecmgmt/reputation.pdf
2. Waving the Red Flag: Rules for Reducing Identity Theft. http://www.mekabay.com/infosecmgmt/redflag.pdf
3. Documentation for Less Work: Will this Have to be Done Again? http://www.mekabay.com/opsmgmt/documentation.pdf
4. Preparing for the Next Solar Max. http://www.mekabay.com/infosecmgmt/solarmax.pdf
5. Understanding Computer Crime Studies and Statistics v6. http://www.mekabay.com/methodology/crime_stats_methods.pdf
6. Pepys into the Corridors of Power. http://www.mekabay.com/opinion/pepys.pdf
7. System Logging. http://www.mekabay.com/opsmgmt/logging.pdf
8. IA Specialists Need to Communicate: Guide and Checklist for Expository Writing. http://www.mekabay.com/expository.pdf
9.
US DoD Annual Estimates of Information Warfare Capabilities and
Commitment of the PRC 2002-2009. http://www.mekabay.com/overviews/dod_prc_iw.pdf
10. Frequently Corrected Errors v6. http://www.mekabay.com/methodology/fce.pdf
11. On Writing v9. http://www.mekabay.com/methodology/writing.pdf
12. The End of Passwords. http://www.mekabay.com/infosecmgmt/end_pw.pdf
13. Using E-mail Safely and Well v2. http://www.mekabay.com/infosecmgmt/emailsec.pdf
Network World
Security Strategies newsletter http://www.networkworld.com/newsletters/sec/
There are usually 8-10 articles in press at any time. These columns have ~55,000 subscribers (Oct 2008). * indicates collaboration with guest authors.
1. Internet addiction in China: Some teens harshly treated (12/23/09) http://www.networkworld.com/newsletters/sec/2009/122109sec2.html
2. Debate over Internet “Addiction” (12/21/09) http://www.networkworld.com/newsletters/sec/2009/122109sec1.html
3. Internet habit? Dependency? Addiction? Pop psychology? (12/16/09) http://www.networkworld.com/newsletters/sec/2009/121409sec2.html
4. Traveling to dictatorships (12/14/09) http://www.networkworld.com/newsletters/sec/2009/121409sec1.html
5. H4ck3rs are people too: Film review (12/09/09) http://www.networkworld.com/newsletters/sec/2009/120709sec2.html
6. The Fruit of the Poisoned Tree (12/07/09) http://www.networkworld.com/newsletters/sec/2009/120709sec1.html
7. Why Criminal Hackers Must Not Be Rewarded (12/02/09) http://www.networkworld.com/newsletters/sec/2009/113009sec2.html
8. *SANS official talks security (11/30/09) http://www.networkworld.com/newsletters/sec/2009/113009sec1.html
9. *Information security and business strategy Part 1 (11/23/09) http://www.networkworld.com/newsletters/sec/2009/112309sec1.html
10. Advice to beginners (11/18/09) http://www.networkworld.com/newsletters/sec/2009/111609sec2.html
11. A different kind of antiviral donation for Africa (11/16/09) http://www.networkworld.com/newsletters/sec/2009/111609sec1.html
12. IA
job prospects bright (11/11/09) http://www.networkworld.com/newsletters/sec/2009/110909sec2.html
13. Detailing
contingency planning (11/09/09) http://www.networkworld.com/newsletters/sec/2009/110909sec1.html
14. *SP
800-53 is essential for security in federal government IT systems (11/04/09) http://www.networkworld.com/newsletters/sec/2009/110209sec2.html
15. *Extensive
Catalog Provides Security Controls for Contemporary Security Requirements (11/02/09) http://www.networkworld.com/newsletters/sec/2009/110209sec1.html
16. *NIST
SP800-53 Rev. 3: Risk Management Framework Underpins the Security Life
Cycle (10/28/09) http://www.networkworld.com/newsletters/sec/2009/102609sec2.html
17. *NIST SP800-53 Rev. 3: Key to Unified Security Across Federal Government and Private Sectors (10/26/09) http://www.networkworld.com/newsletters/sec/2009/102609sec1.html
18. Understanding
and implementing information security metrics (10/21/09) http://www.networkworld.com/newsletters/sec/2009/101909sec2.html
19. *Hiring
hackers: A rebuttal (part 2) (10/19/09) http://www.networkworld.com/newsletters/sec/2009/101909sec1.html
20. *Hiring
hackers: A Rebuttal (part 1) (10/14/09) http://www.networkworld.com/newsletters/sec/2009/101209sec2.html
21. Data-theft
Trojans and the changing face of the Web (10/12/09) http://www.networkworld.com/newsletters/sec/2009/101209sec1.html
22. *The
Norm Coleman Web crash and full disclosure (2)
(10/07/09) http://www.networkworld.com/newsletters/sec/2009/100509sec2.html
23. *The
Norm Coleman Web crash and full disclosure (1)
(10/05/09) http://www.networkworld.com/newsletters/sec/2009/100509sec1.html
24. Applying
the science of persuasion to security awareness (9/30/09) http://www.networkworld.com/newsletters/sec/2009/092809sec2.html
25.
*The IA Professional's Toolkit Part 7 (9/28/09) http://www.networkworld.com/newsletters/sec/2009/092809sec1.html
26. *The IA Professional's Toolkit Part 6 (9/23/09) http://www.networkworld.com/newsletters/sec/2009/092109sec2.html
27. *The
IA Professional's Toolkit Part 5 (9/21/09) http://www.networkworld.com/newsletters/sec/2009/092109sec1.html
28. *The
IA Professional's Toolkit Part 4 (9/16/09) http://www.networkworld.com/newsletters/sec/2009/091409sec2.html
29. *The IA Professional's Toolkit Part 3 (9/14/09) http://www.networkworld.com/newsletters/sec/2009/091409sec1.html
30. *The
IA Professional's Toolkit Part 2 (9/09/09) http://www.networkworld.com/newsletters/sec/2009/090709sec2.html
31. *The
IA Professional's Toolkit Part 1 (9/07/09) http://www.networkworld.com/newsletters/sec/2009/090709sec1.html
32. Pseudonymous
critic impugns integrity of all security professionals (9/02/09) http://www.networkworld.com/newsletters/sec/2009/083109sec2.html
33. Identity
Theft Resource Center Part 2 (8/31/09) http://www.networkworld.com/newsletters/sec/2009/083109sec1.html
34. Identity
theft resource center (8/26/09) http://www.networkworld.com/newsletters/sec/2009/082409sec2.html
35. *IA
Policies Part 2 (8/24/09) http://www.networkworld.com/newsletters/sec/2009/082409sec1.html
36. *IA
policies (part 1) (8/19/09) http://www.networkworld.com/newsletters/sec/2009/081709sec2.html
37. Hiring
hackers (part 2) (8/17/09) http://www.networkworld.com/newsletters/sec/2009/081709sec1.html
38. Hiring
hackers (part 1) (8/12/09) http://www.networkworld.com/newsletters/sec/2009/081009sec2.html
39. *Case
studies in working with law enforcement (part 2) (8/10/09) http://www.networkworld.com/newsletters/sec/2009/081009sec1.html
40. *Case studies in working with law enforcement (Part 1) (8/05/09) http://www.networkworld.com/newsletters/sec/2009/080309sec2.html
41. Crisis communications: A primer for teams (part 2) (8/03/09) http://www.networkworld.com/newsletters/sec/2009/080309sec1.html
42. Crisis communications: A primer for teams (Part 1) (7/29/09) http://www.networkworld.com/newsletters/sec/2009/072709sec2.html
43. Preparing for the next solar max (7/27/09) http://www.networkworld.com/newsletters/sec/2009/072709sec1.html
44. Solar storms have caused serious disruptions (7/22/09) http://www.networkworld.com/newsletters/sec/2009/072009sec2.html
45. Solar
storms are more than a curiosity (7/17/09) http://www.networkworld.com/newsletters/sec/2009/072009sec1.html
46. CSH5
discussion group opens for business (7/15/09) http://www.networkworld.com/newsletters/sec/2009/071309sec2.html
47. Reality
trumps theory (7/13/09) http://www.networkworld.com/newsletters/sec/2009/071309sec1.html
48. AMiloration of security: Milo and future hacking (7/08/09) http://www.networkworld.com/newsletters/sec/2009/070609sec2.html
49. *CSIRT Management: Lessons from Other Group Postmortems (Part 2) (7/06/09) http://www.networkworld.com/newsletters/sec/2009/070609sec1.html
50. *CSIRT
Management: Lessons from other group postmortems (7/01/09) http://www.networkworld.com/newsletters/sec/2009/062909sec2.html
51. Iran, disintermediation and cyberwar (6/29/09) http://www.networkworld.com/newsletters/sec/2009/062909sec1.html
52. Subtle
pressures for security policy compliance (6/24/09) http://www.networkworld.com/newsletters/sec/2009/062209sec2.html
53. Working
with consultants, part 4 (6/22/09) http://www.networkworld.com/newsletters/sec/2009/062209sec1.html
54. Working with consultants, part 3 (6/17/09) http://www.networkworld.com/newsletters/sec/2009/061509sec2.html
55. Working
with consultants, part 2 (6/15/09) http://www.networkworld.com/newsletters/sec/2009/061509sec1.html
56. Working
with consultants (6/10/09) http://www.networkworld.com/newsletters/sec/2009/060809sec2.html
57. Consensus
metrics for information security (6/08/09) http://www.networkworld.com/newsletters/sec/2009/060809sec1.html
58. Quality
control, data integrity, and the silly season (6/03/09) http://www.networkworld.com/newsletters/sec/2009/060109sec2.html
59. Dr.
Johnston's Security Maxims: Sense and Humor (6/01/09) http://www.networkworld.com/newsletters/sec/2009/060109sec1.html
60. Security metrics research (5/27/09) http://www.networkworld.com/newsletters/sec/2009/052509sec2.html
61. Phishing
using scary bait (5/22/09) http://www.networkworld.com/newsletters/sec/2009/052509sec1.html
62. *iPhone
Security, Part 2 (5/20/09) http://www.networkworld.com/newsletters/sec/2009/051809sec2.html
63. *iPhone
security, Part 1 (5/19/09) http://www.networkworld.com/newsletters/sec/2009/051809sec1.html
64. *Implications
of proposed Cybersecurity Act of 2009, Part 2 (5/13/09) http://www.networkworld.com/newsletters/sec/2009/051109sec2.html
65. *Implications
of proposed Cybersecurity Act of 2009, Part 1 (5/11/09) http://www.networkworld.com/newsletters/sec/2009/051109sec1.html
66. *Increasing
Internet security for average users (5/07/09) http://www.networkworld.com/newsletters/sec/2009/050409sec2.html
67. IA
career development: Need for IA professionals will grow (5/05/09) http://www.networkworld.com/newsletters/sec/2009/050409sec1.html
68. Locking
out users gives attackers a tool for denial of service (4/30/09) http://www.networkworld.com/newsletters/sec/2009/042709sec2.html
69. Guide
to enterprise password management drafted (4/28/09) http://www.networkworld.com/newsletters/sec/2009/042709sec1.html
70. *Flaws
in 'Internet SAFETY' bill (4/23/09) http://www.networkworld.com/newsletters/sec/2009/042009sec2.html
71. The
state of spam 2009, Part 4 (4/21/09) http://www.networkworld.com/newsletters/sec/2009/042009sec1.html
72. The
state of spam 2009, Part 3 (4/16/09) http://www.networkworld.com/newsletters/sec/2009/041309sec2.html
73. The
state of spam 2009, Part 2 (4/14/09) http://www.networkworld.com/newsletters/sec/2009/041309sec1.html
74. The
state of spam 2009, Part 1 (4/09/09) http://www.networkworld.com/newsletters/sec/2009/040609sec2.html
75. Chinese
information warfare capabilities (4/07/09) http://www.networkworld.com/newsletters/sec/2009/040609sec1.html
76. 2008
was not a good year (4/02/09) http://www.networkworld.com/newsletters/sec/2009/033009sec2.html
77. Accreditation
for IA-related Web sites (3/31/09) http://www.networkworld.com/newsletters/sec/2009/033009sec1.html
78. *Cold-boot
attacks: The 'frozen cache' approach (3/26/09) http://www.networkworld.com/newsletters/sec/2009/032309sec2.html
79. *Cold-boot
attacks change the data leakage landscape (3/24/09) http://www.networkworld.com/newsletters/sec/2009/032309sec1.html
80. As
happy as a rock star in a pig pen (3/19/09) http://www.networkworld.com/newsletters/sec/2009/031609sec2.html
81. Kraken
the botnet: The ethics of counter-hacking (3/17/09) http://www.networkworld.com/newsletters/sec/2009/031609sec1.html
82.
Online auctions: Caveat Mercator Venditorque (3/12/09) http://www.networkworld.com/newsletters/sec/2009/030909sec2.html
83. Trademarks
as keywords for targeted ads? (3/10/09) http://www.networkworld.com/newsletters/sec/2009/030909sec1.html
84. *The Internet Protectors (3/05/09) http://www.networkworld.com/newsletters/sec/2009/030209sec2.html
85. Computer Security Handbook Fifth Edition is ready (3/03/09) http://www.networkworld.com/newsletters/sec/2009/030209sec1.html
86. Bluetooth is not a dental condition (2/26/09) http://www.networkworld.com/newsletters/sec/2009/030209sec1.html
87. Cell phone security (2/24/09) http://www.networkworld.com/newsletters/sec/2009/022309sec1.html
88. Guidelines for securing IEEE 802.11i wireless networks (2/19/09) http://www.networkworld.com/newsletters/sec/2009/021609sec2.html
89. The Habit: or There and Back Again to the NISTy Mountains (2/17/09) http://www.networkworld.com/newsletters/sec/2009/021609sec1.html
90. NSA identifies top 25 programming errors (2/12/09) http://www.networkworld.com/newsletters/sec/2009/020909sec2.html
91. *Is compliance with standards achieving the goal of protecting data? (2/10/09) http://www.networkworld.com/newsletters/sec/2009/020909sec1.html
92. Confounded nonsense (2/05/09) http://www.networkworld.com/newsletters/sec/2009/020209sec2.html
93. Linux Defenders organize to fight patent trolls (2/03/09) http://www.networkworld.com/newsletters/sec/2009/020209sec1.html
94. *Information security and the outsider, Part 2 (1/29/09) http://www.networkworld.com/newsletters/sec/2009/012609sec2.html
95. *Information security and the outsider, Part 1
(1/27/09) http://www.networkworld.com/newsletters/sec/2009/012609sec1.html
96. Don’t just talk about security - do something!
(1/22/09) http://www.networkworld.com/newsletters/sec/2009/011909sec2.html
97. Users don’t get it (but it’s human
nature) (1/20/09) http://www.networkworld.com/newsletters/sec/2009/011909sec1.html
98. Avoid conflicts over intellectual property (1/15/09) http://www.networkworld.com/newsletters/sec/2009/011209sec2.html
99. MITRE offers recommendation-tracker software and free one-day course (1/13/09) http://www.networkworld.com/newsletters/sec/2009/011209sec1.html
100. Surfing brain waves: fMRI for lie
detection (1/08/09) http://www.networkworld.com/newsletters/sec/2009/010509sec2.html
101. Abiding by the law: Blueport vs. U.S. (1/06/09) http://www.networkworld.com/newsletters/sec/2009/010509sec1.html
2008
Brief History of Computer Crime. http://www.mekabay.com/opsmgmt/facilities_security.pdf
Facilities Security: How to protect your site against attacks and damage. http://www.mekabay.com/opsmgmt/facilities_security.pdf
Network World
Security Strategies newsletter http://www.networkworld.com/newsletters/sec/
* indicates collaboration with guest authors.
1. Cornell a LIIder in cyberlaw resources (12/18/08) http://www.networkworld.com/newsletters/sec/2008/121508sec2.html
2. Pay attention to cyberlaw (12/16/08) http://www.networkworld.com/newsletters/sec/2008/121508sec1.html
3. Technicalinfo.net has good resources (12/11/08) http://www.networkworld.com/newsletters/sec/2008/120808sec2.html
4. Great expectations for managing cybersecurity resources (12/09/08) http://www.networkworld.com/newsletters/sec/2008/120808sec1.html
5. Visible Ops Security, Phase 4 (12/04/08) http://www.networkworld.com/newsletters/sec/2008/120108sec2.html
6. Visible Ops Security, Phase 3 (12/02/08) http://www.networkworld.com/newsletters/sec/2008/120108sec1.html
7. Visible Ops Security, Phase 2 (11/25/08) http://www.networkworld.com/newsletters/sec/2008/112408sec1.html
8. Visible Ops Security, Phase 1 (11/20/08) http://www.networkworld.com/newsletters/sec/2008/111708sec2.html
9.
Introducing Visible Ops Security
(11/18/08) http://www.networkworld.com/newsletters/sec/2008/111708sec1.html
10. Visible
Ops Handbook (11/13/08) http://www.networkworld.com/newsletters/sec/2008/111008sec2.html
11. Swiss mix: Useful copyright resource (11/11/08) http://www.networkworld.com/newsletters/sec/2008/111008sec1.html
12. New
Web site and files for readers (11/06/08) http://www.networkworld.com/newsletters/sec/2008/110308sec2.html
13. ‘Zero
Day Threat’: Deep analysis + fun = excellent read (11/04/08) http://www.networkworld.com/newsletters/sec/2008/110308sec1.html
14. *Copyright
infringement and the CISSP, Part 2 (10/30/08) http://www.networkworld.com/newsletters/sec/2008/102708sec2.html
15. *Copyright
infringement and the CISSP, Part 1 (10/28/08) http://www.networkworld.com/newsletters/sec/2008/102708sec1.html
16. Arrogance
or efficiency? Why Microsoft redesigned the Office user interface, Part 4
(10/23/08) http://www.networkworld.com/newsletters/sec/2008/102008sec2.html
17. Arrogance
or efficiency? Why Microsoft redesigned the Office user interface, Part 3
(10/21/08) http://www.networkworld.com/newsletters/sec/2008/102008sec1.html
18. Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 2 (10/16/08) http://www.networkworld.com/newsletters/sec/2008/101308sec2.html
19. Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 1 (10/14/08) http://www.networkworld.com/newsletters/sec/2008/101308sec1.html
20. *How to react to a fire alarm (10/09/08) http://www.networkworld.com/newsletters/sec/2008/100608sec2.html
21. *Don’t be a Blobmonger (10/07/08) http://www.networkworld.com/newsletters/sec/2008/100608sec1.html
22. Securing the eCampus 2008 (10/02/08) http://www.networkworld.com/newsletters/sec/2008/092908sec2.html
23. *The
data center from hell, Part 3: Lessons learned (9/30/08) http://www.networkworld.com/newsletters/sec/2008/092908sec1.html
24. *The
data center from hell, Part 2 (9/25/08) http://www.networkworld.com/newsletters/sec/2008/092208sec2.html
25.
*The data center from hell, Part 1 (9/23/08) http://www.networkworld.com/newsletters/sec/2008/092208sec1.html
26. How
not to manage lost passwords (9/18/08) http://www.networkworld.com/newsletters/sec/2008/091508sec2.html
27. reCAPTCHA
illustrates human ingenuity (9/16/08) http://www.networkworld.com/newsletters/sec/2008/091508sec1.html
28. Bad
business model: Turning subscriptions into gambling (9/11/08) http://www.networkworld.com/newsletters/sec/2008/090808sec2.html
29. New
kids advance ‘New School’ (9/09/08) http://www.networkworld.com/newsletters/sec/2008/090808sec1.html
30. The
privacy policy problem, Part 4: Reality hits home (9/04/08) http://www.networkworld.com/newsletters/sec/2008/090108sec2.html
31. The
privacy policy problem, Part 3: Opting out of opting out (9/02/08) http://www.networkworld.com/newsletters/sec/2008/090108sec1.html
32. The
privacy policy problem, Part 2: Controlling business partners (8/28/08) http://www.networkworld.com/newsletters/sec/2008/082508sec2.html
33. The
privacy policy problem, Part 1: A model policy (8/26/08) http://www.networkworld.com/newsletters/sec/2008/082508sec1.html
34. Analyzing
fundamental flaws: Opening vs. unlocking (8/21/08) http://www.networkworld.com/newsletters/sec/2008/081808sec2.html
35. IMCD
Business Backup: Prepare for all ContingenZs (8/19/08) http://www.networkworld.com/newsletters/sec/2008/081808sec1.html
36. Encryption
bottleneck: Lessons from performance analysis (8/14/08) http://www.networkworld.com/newsletters/sec/2008/081108sec2.html
37. WEIS
2008: IPv6 illustrates resistance to new technologies (8/12/08) http://www.networkworld.com/newsletters/sec/2008/081108sec1.html
38. WEIS
2008: Transition to IPv6 is complex (8/07/08) http://www.networkworld.com/newsletters/sec/2008/080408sec2.html
39. WEIS
2008: Escalation and incentives for better security (8/05/08) http://www.networkworld.com/newsletters/sec/2008/080408sec1.html
40. WEIS
2008: Security economics and European policy (7/31/08) http://www.networkworld.com/newsletters/sec/2008/072808sec2.html
41. WEIS 2008: Do data-breach-disclosure laws reduce identity theft? (7/29/08) http://www.networkworld.com/newsletters/sec/2008/072808sec1.html
42. *Insider
controls still lacking (7/24/08) http://www.networkworld.com/newsletters/sec/2008/072108sec2.html
43. ‘Bad
Verb’: A bad user interface in action (7/22/08) http://www.networkworld.com/newsletters/sec/2008/072108sec1.html
44. *DoD
offers useful certification guidelines (7/17/08) http://www.networkworld.com/newsletters/sec/2008/071408sec2.html
45. *Biometric blooper? (7/15/08) http://www.networkworld.com/newsletters/sec/2008/071408sec1.html
46. Verizon data breach report, Part 4: Attack vectors (7/10/08) http://www.networkworld.com/newsletters/sec/2008/070708sec2.html
47.
Verizon data breach report, Part 3: Breach size
and source (7/08/08) http://www.networkworld.com/newsletters/sec/2008/070708sec1.html
48. Verizon
data breach investigations report, Part 2: Outsider attacks (7/03/08) http://www.networkworld.com/newsletters/sec/2008/063008sec2.html
49. Verizon data breach investigations report, Part 1 (7/01/08) http://www.networkworld.com/newsletters/sec/2008/063008sec1.html
50. Improved security raises threat to the unimproved (6/26/08) http://www.networkworld.com/newsletters/sec/2008/062308sec1.html
51. *Extreme weather and business continuity (6/24/08) http://www.networkworld.com/newsletters/sec/2008/062308sec1.html
52. Keep pace with vulnerabilities (6/19/08) http://www.networkworld.com/newsletters/sec/2008/061608sec2.html
53. Infowar
resources (6/17/08) http://www.networkworld.com/newsletters/sec/2008/061608sec1.html
54. LBB2E: Joel Dubin updates his pocket guide (6/12/08) http://www.networkworld.com/newsletters/sec/2008/060908sec2.html
55. Master of Science in Business Continuity Management (6/10/08) http://www.networkworld.com/newsletters/sec/2008/060908sec1.html
56. 10 tips for moving e-discovery into the enterprise (6/05/08) http://www.networkworld.com/newsletters/sec/2008/060208sec2.html
57. Useful guides to e-mail archiving (6/03/08) http://www.networkworld.com/newsletters/sec/2008/060208sec1.html
58. Workshop
on Economics of Information Security (5/29/08) http://www.networkworld.com/newsletters/sec/2008/052608sec2.html
59. Bordering
on insanity (5/27/08) http://www.networkworld.com/newsletters/sec/2008/052608sec1.html
60. Crossing
borders with corporate data (5/22/08) http://www.networkworld.com/newsletters/sec/2008/051908sec2.html
61. Expanding
roles for the CISO (5/20/08) http://www.networkworld.com/newsletters/sec/2008/051908sec1.html
62. The
CISO as strategic resource (5/15/08) http://www.networkworld.com/newsletters/sec/2008/051208sec2.html
63. Building a bridge from the CISO to the CEO (5/13/08) http://www.networkworld.com/newsletters/sec/2008/051208sec1.html
64. Identity Finder helps prevent identity theft (5/08/08) http://www.networkworld.com/newsletters/sec/2008/050508sec2.html
65. Central Ohio InfoSec Summit coming up soon (5/06/08) http://www.networkworld.com/newsletters/sec/2008/050508sec1.html
66. Zapping ‘zappers’ (5/01/08) http://www.networkworld.com/newsletters/sec/2008/042808sec2.html
67. Zap! You’re under arrest (4/29/08) http://www.networkworld.com/newsletters/sec/2008/042808sec1.html
68. Scan ScanSafe’s annual report for heuristic experience (4/24/08) http://www.networkworld.com/newsletters/sec/2008/042108sec2.html
69. *Comprehensive security needed to prevent printer hacking (4/22/08) http://www.networkworld.com/newsletters/sec/2008/042108sec1.html
70. *Your printer: An open door for hackers? (4/17/08) http://www.networkworld.com/newsletters/sec/2008/041408sec2.html
71. *Managing CSIRT burnout and turnover: a case study, Part 3 (4/15/08) http://www.networkworld.com/newsletters/sec/2008/041408sec1.html
72. *Managing CSIRT burnout and turnover: a case study, Part 2 (4/10/08) http://www.networkworld.com/newsletters/sec/2008/040708sec2.html
73. *Managing CSIRT burnout and turnover: a case study, Part 1 (4/08/08) http://www.networkworld.com/newsletters/sec/2008/040708sec1.html
74. April Fool’s lessons (4/03/08) http://www.networkworld.com/newsletters/sec/2008/033108sec2.html
75. MessageLabs Intelligence Reports make good reading (4/01/08) http://www.networkworld.com/newsletters/sec/2008/033108sec1.html
76. The state of spam: An interview with Jamie de Guerre, Part 2 (3/27/08) http://www.networkworld.com/newsletters/sec/2008/0324sec2.html
77. The state of spam: An interview with Jamie de Guerre, Part 1 (3/25/08) http://www.networkworld.com/newsletters/sec/2008/0324sec1.html
78. Security roles made brilliantly clear (3/20/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2.html
79. Process over presumption: The Vermont encryption key decision (3/18/08) http://www.networkworld.com/newsletters/sec/2008/0317sec1.html
80. Chapters
in ‘Information Roles & Responsibilities Made Easy’ (3/17/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2a.html
81. Charles
Cresson Wood’s list of common mistakes you should avoid (3/17/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2b.html
82. Protecting
your SSN and your reading habits (3/13/08) http://www.networkworld.com/newsletters/sec/2008/0310sec2.html
83. Why
identity-theft rates are so high (3/11/08) http://www.networkworld.com/newsletters/sec/2008/0310sec1.html
84. Defending
against identity theft: Identity Guard (3/06/08) http://www.networkworld.com/newsletters/sec/2008/0303sec2.html
85. Defending
against identity theft: LifeLock (3/04/08) http://www.networkworld.com/newsletters/sec/2008/0303sec1.html
86. *Windows
Server 2008: The shape of the world to come (2/28/08) http://www.networkworld.com/newsletters/sec/2008/0225sec2.html
87. Service
management metrics significant for CSIRTs (2/26/08) http://www.networkworld.com/newsletters/sec/2008/0225sec1.html
88. *Two-factor
credit-card safety for online transactions (2/21/08) http://www.networkworld.com/newsletters/sec/2008/0218sec2.html
89. Blurred
lines: Reliability of polygraph examinations (2/19/08) http://www.networkworld.com/newsletters/sec/2008/0218sec1.html
90. Drawing
the lines: Applications of the polygraph (2/14/08) http://www.networkworld.com/newsletters/sec/2008/0211sec2.html
91. Poly want a hacker? (2/12/08) http://www.networkworld.com/newsletters/sec/2008/0211sec1.html
92. Crystal
Ball 2008 in Montreal (2/07/08) http://www.networkworld.com/newsletters/sec/2008/0204sec2.html
93. CISSP-holders
save time and money toward degree (2/05/08) http://www.networkworld.com/newsletters/sec/2008/0204sec1.html
94. Getting
CERIAS about security (1/31/08) http://www.networkworld.com/newsletters/sec/2008/0128sec2.html
95. Handbook
of Computer Networks: Another Bidgoli goldmine (1/29/08) http://www.networkworld.com/newsletters/sec/2008/0128sec1.html
96. ‘Halting
State’ a good read for security geeks (1/24/08) http://www.networkworld.com/newsletters/sec/2008/0121sec2.html
97. Identity
theft: The Shadowcrew case (1/22/08) http://www.networkworld.com/newsletters/sec/2008/0121sec1.html
98. Identity
theft is a burden on the victim (1/17/08) http://www.networkworld.com/newsletters/sec/2008/0114sec2.html
99. A new Outlook (file) (1/15/08) http://www.networkworld.com/newsletters/sec/2008/0114sec1.html
100. Controlling outbound e-mail (1/10/08) http://www.networkworld.com/newsletters/sec/2008/0107sec2.html
101. Don’t let e-mail impair productivity (1/08/08) http://www.networkworld.com/newsletters/sec/2008/0107sec1.html
102. *Bank of America authenticates via mobile phone (1/03/08) http://www.networkworld.com/newsletters/sec/2008/1231sec2.html
Intellectual property developments
in 2007. In: 2007 Year in Review,
Peltier Associates, pp 36-39. http://www.peltierassociates.com/index.php?option=com_docman&task=cat_view&gid=64&Itemid=55
Network World
Security Strategies newsletter http://www.networkworld.com/newsletters/sec/
1.
Howard Schmidt patrols cyberspace (12/20/07) http://www.networkworld.com/newsletters/sec/2007/1217sec2.html
2.
Federal News Radio spotlights security
(12/18/07) http://www.networkworld.com/newsletters/sec/2007/1217sec1.html
3.
*Reducing employee turnover: The STCC
case study, Part 2 (12/13/07) http://www.networkworld.com/newsletters/sec/2007/1210sec2.html
4.
*Reducing employee turnover: The STCC
case study, Part 1 (12/11/07) http://www.networkworld.com/newsletters/sec/2007/1210sec1.html
5.
Podcasts busting out at CERT/CC (12/06/07)
http://www.networkworld.com/newsletters/sec/2007/1203sec2.html
6.
Privaris offers multi-use biometric
token (12/04/07) http://www.networkworld.com/newsletters/sec/2007/1203sec1.html
7.
Free password generators, Part 3
(11/29/07) http://www.networkworld.com/newsletters/sec/2007/1126sec2.html
8.
Free password generators, Part 2
(11/27/07) http://www.networkworld.com/newsletters/sec/2007/1126sec1.html
9.
Free password generators, Part 1
(11/20/07) http://www.networkworld.com/newsletters/sec/2007/1119sec1.html
10. ISACA
Winnipeg’s bestseller list: Build Security In (11/15/07) http://www.networkworld.com/newsletters/sec/2007/1112sec2.html
11. *Social
engineering in penetration testing: Overload and fascination (11/13/07) http://www.networkworld.com/newsletters/sec/2007/1112sec1.html
12. *Social
engineering in penetration testing: Intimidation (11/08/07) http://www.networkworld.com/newsletters/sec/2007/1105sec2.html
13. Social
engineering in penetration testing: Postmortem (11/06/07) http://www.networkworld.com/newsletters/sec/2007/1105sec1.html
14. Social
engineering in penetration testing: Planning (11/01/07) http://www.networkworld.com/newsletters/sec/2007/1029sec2.html
15. *Social
engineering in penetration testing: Analysis (10/30/07) http://www.networkworld.com/newsletters/sec/2007/1029sec1.html
16. *Social
engineering in penetration testing: Cases (10/25/07) http://www.networkworld.com/newsletters/sec/2007/1022sec2.html
17.
Incident response: Don’t lie (10/23/07) http://www.networkworld.com/newsletters/sec/2007/1022sec1.html
18. Hidden costs of passwords. (10/18/07) http://www.networkworld.com/newsletters/sec/2007/1015sec2.html
19. Jason
Holloway’s Holy Grail (10/16/07) http://www.networkworld.com/newsletters/sec/2007/1015sec1.html
20. Password
management: Facing the problem (10/11/07) http://www.networkworld.com/newsletters/sec/2007/1008sec2.html
21. The
way we frame risks influences perception (10/09/07) http://www.networkworld.com/newsletters/sec/2007/1008sec1.html
22. Why
passwords are passé (10/04/07) http://www.networkworld.com/newsletters/sec/2007/1001sec2.html