PUBLICATIONS

Michel E. Kabay, PhD, CISSP-ISSMP

2010

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

There are usually 8-10 articles in press at any time. These columns have ~55,000 subscribers (Nov 2009). * indicates collaboration with guest authors.

1.        Proposing a secure global opt-out list (08/18/10) http://www.networkworld.com/newsletters/sec/2010/081610sec2.html

2.        Clamping down on spammers (08/16/10) http://www.networkworld.com/newsletters/sec/2010/081610sec1.html

3.        *Keep your network management rules current (08/11/10) http://www.networkworld.com/newsletters/sec/2010/080910sec2.html

4.        Recipients not the only victims of spammers (08/09/10) http://www.networkworld.com/newsletters/sec/2010/080210sec2.html

5.        *Challenges of software quality assurance (08/04/10) http://www.networkworld.com/newsletters/sec/2010/080210sec2.html

6.        *Software shouldn't fail (08/02/10) http://www.networkworld.com/newsletters/sec/2010/080210sec1.html

7.        *Automated software quality assurance really matters (07/28/10) http://www.networkworld.com/newsletters/sec/2010/072610sec2.html

8.        *Enterprise UTM vs next-generation firewalls (07/26/10) http://www.networkworld.com/newsletters/sec/2010/072610sec1.html

9.        Unified security (07/21/10) http://www.networkworld.com/newsletters/sec/2010/071910sec2.html

10.     Preventing identity theft (07/19/10) http://www.networkworld.com/newsletters/sec/2010/071910sec1.html

11.     Check your credit-card bills (07/14/10) http://www.networkworld.com/newsletters/sec/2010/071210sec2.html

12.     Anonymous malice and e-mail protocol (07/12/10) http://www.networkworld.com/newsletters/sec/2010/071210sec1.html

13.     *Bidgoli's new MIS 2010 textbook a gold mine (07/07/10) http://www.networkworld.com/newsletters/sec/2010/070510sec2.html

14.      Academic fraud: The biology lab and the French paper (07/05/10) http://www.networkworld.com/newsletters/sec/2010/070510sec1.html

15.      Essay forensics: The German caper (06/30/10) http://www.networkworld.com/newsletters/sec/2010/062810sec2.html

16.      Fraudulent term papers: A breach of authenticity (06/28/10) http://www.networkworld.com/newsletters/sec/2010/062810sec1.html

17.      Carry out routine internal audits of communications (06/23/10) http://www.networkworld.com/newsletters/sec/2010/062110sec2.html

18.      Michael Powell gives The Home Depot the finger (guard) (06/21/10) http://www.networkworld.com/newsletters/sec/2010/062110sec1.html

19.      Doing the right thing on the 'Net (06/16/10) http://www.networkworld.com/newsletters/sec/2010/061410sec2.html

20.      Using e-mail safely and well (06/14/10) http://www.networkworld.com/newsletters/sec/2010/061410sec1.html

21.      Socializing safely via the Internet (06/09/10) http://www.networkworld.com/newsletters/sec/2010/060710sec2.html

22.      Get out there and teach: Integrating cyberspace into our moral universe (06/07/10) http://www.networkworld.com/newsletters/sec/2010/060710sec1.html

23.      Photo forensics: Identifying faked pictures (06/02/10) http://www.networkworld.com/newsletters/sec/2010/053110sec2.html

24.      *Talking with a Forbes blogger about firewalls (05/31/10) http://www.networkworld.com/newsletters/sec/2010/053110sec1.html

25.      *The firewall: Interview with blogger Daniel Kennedy (05/26/10) http://www.networkworld.com/newsletters/sec/2010/052410sec2.html

26.     Self-replicating nanobots (05/24/10) http://www.networkworld.com/newsletters/sec/2010/052410sec1.html

27.     Nanotech will be focus for future criminal hackers http://www.networkworld.com/newsletters/sec/2010/051710sec2.html

28.     *Legal risks with virtual currencies in online games (05/17/10) http://www.networkworld.com/newsletters/sec/2010/051710sec1.html

29.     *Real legal issues with virtual currencies (05/12/10) http://www.networkworld.com/newsletters/sec/2010/051010sec2.html

30.     Domestic politics are important in dealing with Internet censorship in China (05/12/10) http://www.networkworld.com/newsletters/sec/2010/051010sec1.html

31.     Internet censorship in China: The conventional view (5/05/10) http://www.networkworld.com/newsletters/sec/2010/050310sec2.html

32.      Automated testing a must for effective SQA (5/03/10) http://www.networkworld.com/newsletters/sec/2010/050310sec1.html

33.     Software inspections and debugging a must for effective SQA (4/28/10) http://www.networkworld.com/newsletters/sec/2010/042610sec2.html

34.     Canning the spammers: Operators' licenses? For computers?? (4/26/10) http://www.networkworld.com/newsletters/sec/2010/042610sec1.html

35.     Fundamental causes of spam (4/21/10) http://www.networkworld.com/newsletters/sec/2010/041910sec2.html

36.     Canning the spammers: The problem is not improving (4/19/10) http://www.networkworld.com/newsletters/sec/2010/041910sec1.html

37.     WikiLeaks and Iceland battle for Internet freedom (4/14/10) http://www.networkworld.com/newsletters/sec/2010/041210sec2.html

38.     The Battle for Internet Freedom in Italy (4/12/10) http://www.networkworld.com/newsletters/sec/2010/041210sec1.html

39.     Who's responsible in the battle for Internet freedom (04/07/10) http://www.networkworld.com/newsletters/sec/2010/040510sec2.html

40.      Defamation and the battle for Internet freedom (04/05/10) http://www.networkworld.com/newsletters/sec/2010/040510sec1.html

41.      Postmortem: Broken feedback loops in critical systems (03/31/10) http://www.networkworld.com/newsletters/sec/2010/032910sec2.html

42.      Restrictions on intellectual property (03/29/10) http://www.networkworld.com/newsletters/sec/2010/032910sec1.html

43.      The battle for Internet freedom: Obscenity and child pornography (03/24/10) http://www.networkworld.com/newsletters/sec/2010/032210sec2.html

44.      The battle for Internet freedom (03/22/10) http://www.networkworld.com/newsletters/sec/2010/032210sec1.html

45.      Pushing for software quality assurance (03/17/10) http://www.networkworld.com/newsletters/sec/2010/031510sec2.html

46.     *Practical priorities in PCI DSS logging (3/10/10) http://www.networkworld.com/newsletters/sec/2010/030810sec2.html

47.     *PCI DSS logging: A must for compliance (3/08/10) http://www.networkworld.com/newsletters/sec/2010/030810sec1.html

48.     Software development and quality assurance (3/08/10) http://www.networkworld.com/newsletters/sec/2010/031510sec1.html

49.     Texting on mobile phones while driving (3/03/10) http://www.networkworld.com/newsletters/sec/2010/030110sec2.html

50.     Texting on mobile phones while driving: Duhhh (3/01/10) http://www.networkworld.com/newsletters/sec/2010/030110sec1.html

51.     Regulations and resolutions of talking on mobile phones while driving (2/24/10) http://www.networkworld.com/newsletters/sec/2010/022210sec2.html

52.     Documented dangers of talking on mobile phones while driving (2/22/10) http://www.networkworld.com/newsletters/sec/2010/022210sec1.html

53.     Is there a best certification? (2/17/10) http://www.networkworld.com/newsletters/sec/2010/021510sec2.html

54.     Mandatory certification & licensing for IA professionals (2/15/10) http://www.networkworld.com/newsletters/sec/2010/021510sec1.html

55.     Context for discussions of mandatory certification (2/10/10) http://www.networkworld.com/newsletters/sec/2010/020810sec2.html

56.     More evidence of value of security certification (2/08/10) http://www.networkworld.com/newsletters/sec/2010/020810sec1.html

57.     Do IA certifications improve hiring, promotion & salaries? (2/03/10) http://www.networkworld.com/newsletters/sec/2010/020110sec2.html

58.     Fact, fiction and the Internet (2/01/10) http://www.networkworld.com/newsletters/sec/2010/020110sec1.html

59.     IMPERVAious to common sense (1/27/10) http://www.networkworld.com/newsletters/sec/2010/012510sec2.html

60.     Informing victims of identity theft (1/25/10) http://www.networkworld.com/newsletters/sec/2010/012510sec1.html

61.     IC3 includes identity theft in statistics (1/20/10) http://www.networkworld.com/newsletters/sec/2010/011810sec2.html

62.     Windows 7 troubles and business continuity (1/19/10) http://www.networkworld.com/newsletters/sec/2010/011810sec1.html

63.     *Pirate's cove: Defenses (1/13/10) http://www.networkworld.com/newsletters/sec/2010/011110sec2.html

64.     *Pirate's cove: The eastern havens (1/11/10) http://www.networkworld.com/newsletters/sec/2010/011110sec1.html

65.     *Pirate's Cove: The western havens (1/06/10) http://www.networkworld.com/newsletters/sec/2010/010410sec2.html

66.     *Pirate's Cove: Setting the stage (1/04/10) http://www.networkworld.com/newsletters/sec/2010/010410sec1.html

2009

Bosworth, S., M. E. Kabay, & E. Whyne (2009), editors. Computer Security Handbook, 5^th Edition. Wiley (ISBN 0-471-71652-9). Two volumes; 2040 pp. Index.  Chapters:

2.             Kabay, M. E.: History of Computer Crime

10.           Kabay, M. E.: Understanding Studies and Surveys of Computer Crime

15.           Cobb, C., S. Cobb & M. E. Kabay: Penetrating Systems and Networks

38.           Nichols, L. E., M. E. Kabay, & T. Braithwaite: Writing Secure Code

44.           Kabay, M. E. & B. Robertson: Security Policy Guidelines

47.           Kabay, M. E., D. Holden & Myles Walsh: Operations Security and Production Controls

48.           Kabay, M. E. & N. Takacs: E-Mail and Internet Use Policies

50.           Kabay, M. E., B. Robertson, M. Akella & D. T. Lang: Using Social Psychology to Implement Security Policies

56.           Miora, M., M. E. Kabay & B. Cowens: Computer Security Incident Response Teams

57.           Kabay, M. E. & D. Holden: Data Backups and Archives

63.           Hallberg, C., M. E. Kabay, B. Robertson & A. Hutt: Management Responsibilities and Liabilities

66.           Kabay, M. E. & S. Kelley: Developing Security Policies

70.           Kabay, M. E., E. Salveggio & R. Guess: Anonymity and Identity in Cyberspace

74.           Christian, C., M. E. Kabay, K. Henry & S. Schneider: Professional Certification and Training in Information Assurance

 

White Papers on Web Site

1.        Protecting Your Reputation in Cyberspace. http://www.mekabay.com/infosecmgmt/reputation.pdf

2.        Waving the Red Flag: Rules for Reducing Identity Theft. http://www.mekabay.com/infosecmgmt/redflag.pdf

3.        Documentation for Less Work: Will this Have to be Done Again? http://www.mekabay.com/opsmgmt/documentation.pdf

4.        Preparing for the Next Solar Max. http://www.mekabay.com/infosecmgmt/solarmax.pdf

5.        Understanding Computer Crime Studies and Statistics v6. http://www.mekabay.com/methodology/crime_stats_methods.pdf

6.        Pepys into the Corridors of Power. http://www.mekabay.com/opinion/pepys.pdf

7.        System Logging. http://www.mekabay.com/opsmgmt/logging.pdf

8.        IA Specialists Need to Communicate: Guide and Checklist for Expository Writing. http://www.mekabay.com/expository.pdf

9.        US DoD Annual Estimates of Information Warfare Capabilities and Commitment of the PRC 2002-2009. http://www.mekabay.com/overviews/dod_prc_iw.pdf

10.     Frequently Corrected Errors v6. http://www.mekabay.com/methodology/fce.pdf

11.     On Writing v9. http://www.mekabay.com/methodology/writing.pdf

12.     The End of Passwords. http://www.mekabay.com/infosecmgmt/end_pw.pdf

13.     Using E-mail Safely and Well v2. http://www.mekabay.com/infosecmgmt/emailsec.pdf

 

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

There are usually 8-10 articles in press at any time. These columns have ~55,000 subscribers (Oct 2008). * indicates collaboration with guest authors.

1.        Internet addiction in China: Some teens harshly treated (12/23/09) http://www.networkworld.com/newsletters/sec/2009/122109sec2.html

2.        Debate over Internet “Addiction” (12/21/09) http://www.networkworld.com/newsletters/sec/2009/122109sec1.html

3.        Internet habit? Dependency? Addiction? Pop psychology? (12/16/09) http://www.networkworld.com/newsletters/sec/2009/121409sec2.html

4.        Traveling to dictatorships (12/14/09) http://www.networkworld.com/newsletters/sec/2009/121409sec1.html

5.        H4ck3rs are people too: Film review (12/09/09) http://www.networkworld.com/newsletters/sec/2009/120709sec2.html

6.        The Fruit of the Poisoned Tree  (12/07/09) http://www.networkworld.com/newsletters/sec/2009/120709sec1.html

7.        Why Criminal Hackers Must Not Be Rewarded (12/02/09) http://www.networkworld.com/newsletters/sec/2009/113009sec2.html

8.        *SANS official talks security (11/30/09) http://www.networkworld.com/newsletters/sec/2009/113009sec1.html

9.        *Information security and business strategy Part 1  (11/23/09) http://www.networkworld.com/newsletters/sec/2009/112309sec1.html

10.     Advice to beginners (11/18/09) http://www.networkworld.com/newsletters/sec/2009/111609sec2.html

11.     A different kind of antiviral donation for Africa (11/16/09) http://www.networkworld.com/newsletters/sec/2009/111609sec1.html

12.     IA job prospects bright (11/11/09) http://www.networkworld.com/newsletters/sec/2009/110909sec2.html

13.     Detailing contingency planning (11/09/09) http://www.networkworld.com/newsletters/sec/2009/110909sec1.html

14.     *SP 800-53 is essential for security in federal government IT systems (11/04/09) http://www.networkworld.com/newsletters/sec/2009/110209sec2.html

15.     *Extensive Catalog Provides Security Controls for Contemporary Security Requirements  (11/02/09) http://www.networkworld.com/newsletters/sec/2009/110209sec1.html

16.     *NIST SP800-53 Rev. 3: Risk Management Framework Underpins the Security Life Cycle  (10/28/09) http://www.networkworld.com/newsletters/sec/2009/102609sec2.html

17.     *NIST SP800-53 Rev. 3: Key to Unified Security Across Federal Government and Private Sectors (10/26/09) http://www.networkworld.com/newsletters/sec/2009/102609sec1.html

18.     Understanding and implementing information security metrics (10/21/09) http://www.networkworld.com/newsletters/sec/2009/101909sec2.html

19.     *Hiring hackers: A rebuttal (part 2) (10/19/09) http://www.networkworld.com/newsletters/sec/2009/101909sec1.html

20.     *Hiring hackers: A Rebuttal (part 1) (10/14/09) http://www.networkworld.com/newsletters/sec/2009/101209sec2.html

21.     Data-theft Trojans and the changing face of the Web (10/12/09) http://www.networkworld.com/newsletters/sec/2009/101209sec1.html

22.     *The Norm Coleman Web crash and full disclosure (2)  (10/07/09) http://www.networkworld.com/newsletters/sec/2009/100509sec2.html

23.     *The Norm Coleman Web crash and full disclosure (1)  (10/05/09) http://www.networkworld.com/newsletters/sec/2009/100509sec1.html

24.     Applying the science of persuasion to security awareness (9/30/09) http://www.networkworld.com/newsletters/sec/2009/092809sec2.html

25.     *The IA Professional's Toolkit Part 7 (9/28/09) http://www.networkworld.com/newsletters/sec/2009/092809sec1.html

26.     *The IA Professional's Toolkit Part 6 (9/23/09)  http://www.networkworld.com/newsletters/sec/2009/092109sec2.html

27.     *The IA Professional's Toolkit Part 5 (9/21/09)  http://www.networkworld.com/newsletters/sec/2009/092109sec1.html

28.     *The IA Professional's Toolkit Part 4 (9/16/09)  http://www.networkworld.com/newsletters/sec/2009/091409sec2.html

29.     *The IA Professional's Toolkit Part 3 (9/14/09)  http://www.networkworld.com/newsletters/sec/2009/091409sec1.html

30.     *The IA Professional's Toolkit Part 2 (9/09/09)  http://www.networkworld.com/newsletters/sec/2009/090709sec2.html

31.     *The IA Professional's Toolkit Part 1 (9/07/09)  http://www.networkworld.com/newsletters/sec/2009/090709sec1.html

32.     Pseudonymous critic impugns integrity of all security professionals (9/02/09)  http://www.networkworld.com/newsletters/sec/2009/083109sec2.html

33.     Identity Theft Resource Center Part 2 (8/31/09)  http://www.networkworld.com/newsletters/sec/2009/083109sec1.html

34.     Identity theft resource center (8/26/09)  http://www.networkworld.com/newsletters/sec/2009/082409sec2.html

35.     *IA Policies Part 2 (8/24/09)  http://www.networkworld.com/newsletters/sec/2009/082409sec1.html

36.     *IA policies (part 1) (8/19/09)  http://www.networkworld.com/newsletters/sec/2009/081709sec2.html

37.     Hiring hackers (part 2) (8/17/09)  http://www.networkworld.com/newsletters/sec/2009/081709sec1.html

38.     Hiring hackers (part 1) (8/12/09)  http://www.networkworld.com/newsletters/sec/2009/081009sec2.html

39.     *Case studies in working with law enforcement (part 2) (8/10/09)  http://www.networkworld.com/newsletters/sec/2009/081009sec1.html

40.     *Case studies in working with law enforcement (Part 1) (8/05/09)  http://www.networkworld.com/newsletters/sec/2009/080309sec2.html

41.     Crisis communications: A primer for teams (part 2) (8/03/09)  http://www.networkworld.com/newsletters/sec/2009/080309sec1.html

42.     Crisis communications: A primer for teams (Part 1) (7/29/09)  http://www.networkworld.com/newsletters/sec/2009/072709sec2.html

43.     Preparing for the next solar max (7/27/09)  http://www.networkworld.com/newsletters/sec/2009/072709sec1.html

44.     Solar storms have caused serious disruptions (7/22/09)  http://www.networkworld.com/newsletters/sec/2009/072009sec2.html

45.     Solar storms are more than a curiosity (7/17/09)  http://www.networkworld.com/newsletters/sec/2009/072009sec1.html

46.     CSH5 discussion group opens for business (7/15/09)  http://www.networkworld.com/newsletters/sec/2009/071309sec2.html

47.     Reality trumps theory (7/13/09)  http://www.networkworld.com/newsletters/sec/2009/071309sec1.html

48.     AMiloration of security: Milo and future hacking (7/08/09)  http://www.networkworld.com/newsletters/sec/2009/070609sec2.html

49.     *CSIRT Management: Lessons from Other Group Postmortems (Part 2) (7/06/09)  http://www.networkworld.com/newsletters/sec/2009/070609sec1.html

50.     *CSIRT Management: Lessons from other group postmortems (7/01/09)  http://www.networkworld.com/newsletters/sec/2009/062909sec2.html

51.     Iran, disintermediation and cyberwar (6/29/09)  http://www.networkworld.com/newsletters/sec/2009/062909sec1.html

52.     Subtle pressures for security policy compliance (6/24/09)  http://www.networkworld.com/newsletters/sec/2009/062209sec2.html

53.     Working with consultants, part 4 (6/22/09)  http://www.networkworld.com/newsletters/sec/2009/062209sec1.html

54.     Working with consultants, part 3 (6/17/09)  http://www.networkworld.com/newsletters/sec/2009/061509sec2.html

55.     Working with consultants, part 2 (6/15/09)  http://www.networkworld.com/newsletters/sec/2009/061509sec1.html

56.     Working with consultants (6/10/09)  http://www.networkworld.com/newsletters/sec/2009/060809sec2.html

57.     Consensus metrics for information security (6/08/09)  http://www.networkworld.com/newsletters/sec/2009/060809sec1.html

58.     Quality control, data integrity, and the silly season (6/03/09)  http://www.networkworld.com/newsletters/sec/2009/060109sec2.html

59.     Dr. Johnston's Security Maxims: Sense and Humor (6/01/09)  http://www.networkworld.com/newsletters/sec/2009/060109sec1.html

60.     Security metrics research (5/27/09) http://www.networkworld.com/newsletters/sec/2009/052509sec2.html

61.     Phishing using scary bait (5/22/09) http://www.networkworld.com/newsletters/sec/2009/052509sec1.html

62.     *iPhone Security, Part 2 (5/20/09) http://www.networkworld.com/newsletters/sec/2009/051809sec2.html

63.     *iPhone security, Part 1 (5/19/09) http://www.networkworld.com/newsletters/sec/2009/051809sec1.html

64.     *Implications of proposed Cybersecurity Act of 2009, Part 2 (5/13/09) http://www.networkworld.com/newsletters/sec/2009/051109sec2.html

65.     *Implications of proposed Cybersecurity Act of 2009, Part 1 (5/11/09) http://www.networkworld.com/newsletters/sec/2009/051109sec1.html

66.     *Increasing Internet security for average users (5/07/09) http://www.networkworld.com/newsletters/sec/2009/050409sec2.html

67.     IA career development: Need for IA professionals will grow (5/05/09) http://www.networkworld.com/newsletters/sec/2009/050409sec1.html

68.     Locking out users gives attackers a tool for denial of service (4/30/09) http://www.networkworld.com/newsletters/sec/2009/042709sec2.html

69.     Guide to enterprise password management drafted (4/28/09) http://www.networkworld.com/newsletters/sec/2009/042709sec1.html

70.     *Flaws in 'Internet SAFETY' bill (4/23/09) http://www.networkworld.com/newsletters/sec/2009/042009sec2.html

71.     The state of spam 2009, Part 4 (4/21/09) http://www.networkworld.com/newsletters/sec/2009/042009sec1.html

72.     The state of spam 2009, Part 3 (4/16/09) http://www.networkworld.com/newsletters/sec/2009/041309sec2.html

73.     The state of spam 2009, Part 2 (4/14/09) http://www.networkworld.com/newsletters/sec/2009/041309sec1.html

74.     The state of spam 2009, Part 1 (4/09/09) http://www.networkworld.com/newsletters/sec/2009/040609sec2.html

75.     Chinese information warfare capabilities (4/07/09) http://www.networkworld.com/newsletters/sec/2009/040609sec1.html

76.     2008 was not a good year (4/02/09) http://www.networkworld.com/newsletters/sec/2009/033009sec2.html

77.     Accreditation for IA-related Web sites (3/31/09) http://www.networkworld.com/newsletters/sec/2009/033009sec1.html

78.     *Cold-boot attacks: The 'frozen cache' approach (3/26/09) http://www.networkworld.com/newsletters/sec/2009/032309sec2.html

79.     *Cold-boot attacks change the data leakage landscape (3/24/09) http://www.networkworld.com/newsletters/sec/2009/032309sec1.html

80.     As happy as a rock star in a pig pen (3/19/09) http://www.networkworld.com/newsletters/sec/2009/031609sec2.html

81.     Kraken the botnet: The ethics of counter-hacking (3/17/09) http://www.networkworld.com/newsletters/sec/2009/031609sec1.html

82.     Online auctions: Caveat Mercator Venditorque (3/12/09) http://www.networkworld.com/newsletters/sec/2009/030909sec2.html

83.     Trademarks as keywords for targeted ads? (3/10/09) http://www.networkworld.com/newsletters/sec/2009/030909sec1.html

84.     *The Internet Protectors (3/05/09) http://www.networkworld.com/newsletters/sec/2009/030209sec2.html

85.     Computer Security Handbook Fifth Edition is ready (3/03/09) http://www.networkworld.com/newsletters/sec/2009/030209sec1.html

86.     Bluetooth is not a dental condition (2/26/09) http://www.networkworld.com/newsletters/sec/2009/030209sec1.html

87.     Cell phone security (2/24/09) http://www.networkworld.com/newsletters/sec/2009/022309sec1.html

88.     Guidelines for securing IEEE 802.11i wireless networks (2/19/09) http://www.networkworld.com/newsletters/sec/2009/021609sec2.html

89.     The Habit: or There and Back Again to the NISTy Mountains (2/17/09) http://www.networkworld.com/newsletters/sec/2009/021609sec1.html

90.     NSA identifies top 25 programming errors (2/12/09) http://www.networkworld.com/newsletters/sec/2009/020909sec2.html

91.     *Is compliance with standards achieving the goal of protecting data? (2/10/09) http://www.networkworld.com/newsletters/sec/2009/020909sec1.html

92.     Confounded nonsense (2/05/09) http://www.networkworld.com/newsletters/sec/2009/020209sec2.html

93.     Linux Defenders organize to fight patent trolls (2/03/09) http://www.networkworld.com/newsletters/sec/2009/020209sec1.html

94.     *Information security and the outsider, Part 2 (1/29/09) http://www.networkworld.com/newsletters/sec/2009/012609sec2.html

95.      *Information security and the outsider, Part 1 (1/27/09) http://www.networkworld.com/newsletters/sec/2009/012609sec1.html

96.      Don’t just talk about security - do something! (1/22/09) http://www.networkworld.com/newsletters/sec/2009/011909sec2.html

97.      Users don’t get it (but it’s human nature)  (1/20/09) http://www.networkworld.com/newsletters/sec/2009/011909sec1.html

98.      Avoid conflicts over intellectual property  (1/15/09) http://www.networkworld.com/newsletters/sec/2009/011209sec2.html

99.      MITRE offers recommendation-tracker software and free one-day course (1/13/09) http://www.networkworld.com/newsletters/sec/2009/011209sec1.html

100.   Surfing brain waves: fMRI for lie detection  (1/08/09) http://www.networkworld.com/newsletters/sec/2009/010509sec2.html

101.   Abiding by the law: Blueport vs. U.S.  (1/06/09) http://www.networkworld.com/newsletters/sec/2009/010509sec1.html

 

2008

Brief History of Computer Crime. http://www.mekabay.com/opsmgmt/facilities_security.pdf

Facilities Security: How to protect your site against attacks and damage. http://www.mekabay.com/opsmgmt/facilities_security.pdf

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

* indicates collaboration with guest authors.

1.        Cornell a LIIder in cyberlaw resources (12/18/08) http://www.networkworld.com/newsletters/sec/2008/121508sec2.html

2.         Pay attention to cyberlaw (12/16/08) http://www.networkworld.com/newsletters/sec/2008/121508sec1.html

3.         Technicalinfo.net has good resources (12/11/08) http://www.networkworld.com/newsletters/sec/2008/120808sec2.html

4.         Great expectations for managing cybersecurity resources (12/09/08) http://www.networkworld.com/newsletters/sec/2008/120808sec1.html

5.         Visible Ops Security, Phase 4 (12/04/08) http://www.networkworld.com/newsletters/sec/2008/120108sec2.html

6.         Visible Ops Security, Phase 3 (12/02/08) http://www.networkworld.com/newsletters/sec/2008/120108sec1.html

7.         Visible Ops Security, Phase 2 (11/25/08) http://www.networkworld.com/newsletters/sec/2008/112408sec1.html

8.        Visible Ops Security, Phase 1 (11/20/08) http://www.networkworld.com/newsletters/sec/2008/111708sec2.html

9.        Introducing Visible Ops Security (11/18/08) http://www.networkworld.com/newsletters/sec/2008/111708sec1.html

10.     Visible Ops Handbook (11/13/08) http://www.networkworld.com/newsletters/sec/2008/111008sec2.html

11.     Swiss mix: Useful copyright resource (11/11/08) http://www.networkworld.com/newsletters/sec/2008/111008sec1.html

12.     New Web site and files for readers (11/06/08) http://www.networkworld.com/newsletters/sec/2008/110308sec2.html

13.     ‘Zero Day Threat’: Deep analysis + fun = excellent read (11/04/08) http://www.networkworld.com/newsletters/sec/2008/110308sec1.html

14.     *Copyright infringement and the CISSP, Part 2 (10/30/08) http://www.networkworld.com/newsletters/sec/2008/102708sec2.html

15.     *Copyright infringement and the CISSP, Part 1 (10/28/08) http://www.networkworld.com/newsletters/sec/2008/102708sec1.html

16.     Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 4 (10/23/08) http://www.networkworld.com/newsletters/sec/2008/102008sec2.html

17.     Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 3 (10/21/08) http://www.networkworld.com/newsletters/sec/2008/102008sec1.html

18.     Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 2 (10/16/08) http://www.networkworld.com/newsletters/sec/2008/101308sec2.html

19.     Arrogance or efficiency? Why Microsoft redesigned the Office user interface, Part 1 (10/14/08) http://www.networkworld.com/newsletters/sec/2008/101308sec1.html

20.     *How to react to a fire alarm (10/09/08) http://www.networkworld.com/newsletters/sec/2008/100608sec2.html

21.     *Don’t be a Blobmonger (10/07/08) http://www.networkworld.com/newsletters/sec/2008/100608sec1.html

22.     Securing the eCampus 2008 (10/02/08) http://www.networkworld.com/newsletters/sec/2008/092908sec2.html

23.     *The data center from hell, Part 3: Lessons learned (9/30/08) http://www.networkworld.com/newsletters/sec/2008/092908sec1.html

24.     *The data center from hell, Part 2 (9/25/08) http://www.networkworld.com/newsletters/sec/2008/092208sec2.html

25.     *The data center from hell, Part 1 (9/23/08) http://www.networkworld.com/newsletters/sec/2008/092208sec1.html

26.     How not to manage lost passwords (9/18/08) http://www.networkworld.com/newsletters/sec/2008/091508sec2.html

27.     reCAPTCHA illustrates human ingenuity (9/16/08) http://www.networkworld.com/newsletters/sec/2008/091508sec1.html

28.     Bad business model: Turning subscriptions into gambling (9/11/08) http://www.networkworld.com/newsletters/sec/2008/090808sec2.html

29.     New kids advance ‘New School’ (9/09/08) http://www.networkworld.com/newsletters/sec/2008/090808sec1.html

30.     The privacy policy problem, Part 4: Reality hits home (9/04/08) http://www.networkworld.com/newsletters/sec/2008/090108sec2.html

31.     The privacy policy problem, Part 3: Opting out of opting out (9/02/08) http://www.networkworld.com/newsletters/sec/2008/090108sec1.html

32.     The privacy policy problem, Part 2: Controlling business partners (8/28/08) http://www.networkworld.com/newsletters/sec/2008/082508sec2.html

33.     The privacy policy problem, Part 1: A model policy (8/26/08) http://www.networkworld.com/newsletters/sec/2008/082508sec1.html

34.     Analyzing fundamental flaws: Opening vs. unlocking (8/21/08) http://www.networkworld.com/newsletters/sec/2008/081808sec2.html

35.     IMCD Business Backup: Prepare for all ContingenZs (8/19/08) http://www.networkworld.com/newsletters/sec/2008/081808sec1.html

36.     Encryption bottleneck: Lessons from performance analysis (8/14/08) http://www.networkworld.com/newsletters/sec/2008/081108sec2.html

37.     WEIS 2008: IPv6 illustrates resistance to new technologies (8/12/08) http://www.networkworld.com/newsletters/sec/2008/081108sec1.html

38.     WEIS 2008: Transition to IPv6 is complex (8/07/08) http://www.networkworld.com/newsletters/sec/2008/080408sec2.html

39.     WEIS 2008: Escalation and incentives for better security (8/05/08) http://www.networkworld.com/newsletters/sec/2008/080408sec1.html

40.     WEIS 2008: Security economics and European policy (7/31/08) http://www.networkworld.com/newsletters/sec/2008/072808sec2.html

41.     WEIS 2008: Do data-breach-disclosure laws reduce identity theft? (7/29/08) http://www.networkworld.com/newsletters/sec/2008/072808sec1.html

42.     *Insider controls still lacking (7/24/08) http://www.networkworld.com/newsletters/sec/2008/072108sec2.html

43.     ‘Bad Verb’: A bad user interface in action (7/22/08) http://www.networkworld.com/newsletters/sec/2008/072108sec1.html

44.     *DoD offers useful certification guidelines (7/17/08) http://www.networkworld.com/newsletters/sec/2008/071408sec2.html

45.     *Biometric blooper? (7/15/08) http://www.networkworld.com/newsletters/sec/2008/071408sec1.html

46.     Verizon data breach report, Part 4: Attack vectors (7/10/08) http://www.networkworld.com/newsletters/sec/2008/070708sec2.html

47.     Verizon data breach report, Part 3: Breach size and source (7/08/08) http://www.networkworld.com/newsletters/sec/2008/070708sec1.html

48.     Verizon data breach investigations report, Part 2: Outsider attacks (7/03/08) http://www.networkworld.com/newsletters/sec/2008/063008sec2.html

49.     Verizon data breach investigations report, Part 1 (7/01/08) http://www.networkworld.com/newsletters/sec/2008/063008sec1.html

50.     Improved security raises threat to the unimproved (6/26/08) http://www.networkworld.com/newsletters/sec/2008/062308sec1.html

51.     *Extreme weather and business continuity (6/24/08) http://www.networkworld.com/newsletters/sec/2008/062308sec1.html

52.     Keep pace with vulnerabilities (6/19/08) http://www.networkworld.com/newsletters/sec/2008/061608sec2.html

53.     Infowar resources (6/17/08) http://www.networkworld.com/newsletters/sec/2008/061608sec1.html

54.     LBB2E: Joel Dubin updates his pocket guide (6/12/08) http://www.networkworld.com/newsletters/sec/2008/060908sec2.html

55.     Master of Science in Business Continuity Management (6/10/08) http://www.networkworld.com/newsletters/sec/2008/060908sec1.html

56.     10 tips for moving e-discovery into the enterprise (6/05/08) http://www.networkworld.com/newsletters/sec/2008/060208sec2.html

57.     Useful guides to e-mail archiving (6/03/08) http://www.networkworld.com/newsletters/sec/2008/060208sec1.html

58.     Workshop on Economics of Information Security (5/29/08) http://www.networkworld.com/newsletters/sec/2008/052608sec2.html

59.     Bordering on insanity (5/27/08) http://www.networkworld.com/newsletters/sec/2008/052608sec1.html

60.     Crossing borders with corporate data (5/22/08) http://www.networkworld.com/newsletters/sec/2008/051908sec2.html

61.     Expanding roles for the CISO (5/20/08) http://www.networkworld.com/newsletters/sec/2008/051908sec1.html

62.     The CISO as strategic resource (5/15/08) http://www.networkworld.com/newsletters/sec/2008/051208sec2.html

63.     Building a bridge from the CISO to the CEO (5/13/08) http://www.networkworld.com/newsletters/sec/2008/051208sec1.html

64.     Identity Finder helps prevent identity theft (5/08/08) http://www.networkworld.com/newsletters/sec/2008/050508sec2.html

65.     Central Ohio InfoSec Summit coming up soon (5/06/08) http://www.networkworld.com/newsletters/sec/2008/050508sec1.html

66.     Zapping ‘zappers’ (5/01/08) http://www.networkworld.com/newsletters/sec/2008/042808sec2.html

67.     Zap! You’re under arrest (4/29/08) http://www.networkworld.com/newsletters/sec/2008/042808sec1.html

68.     Scan ScanSafe’s annual report for heuristic experience (4/24/08) http://www.networkworld.com/newsletters/sec/2008/042108sec2.html

69.     *Comprehensive security needed to prevent printer hacking (4/22/08) http://www.networkworld.com/newsletters/sec/2008/042108sec1.html

70.     *Your printer: An open door for hackers? (4/17/08) http://www.networkworld.com/newsletters/sec/2008/041408sec2.html

71.     *Managing CSIRT burnout and turnover: a case study, Part 3 (4/15/08) http://www.networkworld.com/newsletters/sec/2008/041408sec1.html

72.     *Managing CSIRT burnout and turnover: a case study, Part 2 (4/10/08) http://www.networkworld.com/newsletters/sec/2008/040708sec2.html

73.     *Managing CSIRT burnout and turnover: a case study, Part 1 (4/08/08) http://www.networkworld.com/newsletters/sec/2008/040708sec1.html

74.     April Fool’s lessons (4/03/08) http://www.networkworld.com/newsletters/sec/2008/033108sec2.html

75.     MessageLabs Intelligence Reports make good reading (4/01/08) http://www.networkworld.com/newsletters/sec/2008/033108sec1.html

76.     The state of spam: An interview with Jamie de Guerre, Part 2 (3/27/08) http://www.networkworld.com/newsletters/sec/2008/0324sec2.html

77.     The state of spam: An interview with Jamie de Guerre, Part 1 (3/25/08) http://www.networkworld.com/newsletters/sec/2008/0324sec1.html

78.     Security roles made brilliantly clear (3/20/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2.html

79.     Process over presumption: The Vermont encryption key decision (3/18/08) http://www.networkworld.com/newsletters/sec/2008/0317sec1.html

80.     Chapters in ‘Information Roles & Responsibilities Made Easy’ (3/17/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2a.html

81.     Charles Cresson Wood’s list of common mistakes you should avoid (3/17/08) http://www.networkworld.com/newsletters/sec/2008/0317sec2b.html

82.     Protecting your SSN and your reading habits (3/13/08) http://www.networkworld.com/newsletters/sec/2008/0310sec2.html

83.     Why identity-theft rates are so high (3/11/08) http://www.networkworld.com/newsletters/sec/2008/0310sec1.html

84.     Defending against identity theft: Identity Guard (3/06/08) http://www.networkworld.com/newsletters/sec/2008/0303sec2.html

85.     Defending against identity theft: LifeLock (3/04/08) http://www.networkworld.com/newsletters/sec/2008/0303sec1.html

86.     *Windows Server 2008: The shape of the world to come (2/28/08) http://www.networkworld.com/newsletters/sec/2008/0225sec2.html

87.     Service management metrics significant for CSIRTs (2/26/08) http://www.networkworld.com/newsletters/sec/2008/0225sec1.html

88.     *Two-factor credit-card safety for online transactions (2/21/08) http://www.networkworld.com/newsletters/sec/2008/0218sec2.html

89.     Blurred lines: Reliability of polygraph examinations (2/19/08) http://www.networkworld.com/newsletters/sec/2008/0218sec1.html

90.     Drawing the lines: Applications of the polygraph (2/14/08) http://www.networkworld.com/newsletters/sec/2008/0211sec2.html

91.     Poly want a hacker? (2/12/08) http://www.networkworld.com/newsletters/sec/2008/0211sec1.html

92.     Crystal Ball 2008 in Montreal (2/07/08) http://www.networkworld.com/newsletters/sec/2008/0204sec2.html

93.     CISSP-holders save time and money toward degree (2/05/08) http://www.networkworld.com/newsletters/sec/2008/0204sec1.html

94.     Getting CERIAS about security (1/31/08) http://www.networkworld.com/newsletters/sec/2008/0128sec2.html

95.     Handbook of Computer Networks: Another Bidgoli goldmine (1/29/08) http://www.networkworld.com/newsletters/sec/2008/0128sec1.html

96.     ‘Halting State’ a good read for security geeks (1/24/08) http://www.networkworld.com/newsletters/sec/2008/0121sec2.html

97.     Identity theft: The Shadowcrew case (1/22/08) http://www.networkworld.com/newsletters/sec/2008/0121sec1.html

98.     Identity theft is a burden on the victim (1/17/08) http://www.networkworld.com/newsletters/sec/2008/0114sec2.html

99.     A new Outlook (file) (1/15/08) http://www.networkworld.com/newsletters/sec/2008/0114sec1.html

100.  Controlling outbound e-mail (1/10/08) http://www.networkworld.com/newsletters/sec/2008/0107sec2.html

101.  Don’t let e-mail impair productivity (1/08/08) http://www.networkworld.com/newsletters/sec/2008/0107sec1.html

102.  *Bank of America authenticates via mobile phone (1/03/08) http://www.networkworld.com/newsletters/sec/2008/1231sec2.html

2007

Intellectual property developments in 2007. In: 2007 Year in Review, Peltier Associates, pp 36-39. http://www.peltierassociates.com/index.php?option=com_docman&task=cat_view&gid=64&Itemid=55

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

1.        Howard Schmidt patrols cyberspace (12/20/07) http://www.networkworld.com/newsletters/sec/2007/1217sec2.html

2.        Federal News Radio spotlights security (12/18/07) http://www.networkworld.com/newsletters/sec/2007/1217sec1.html

3.        *Reducing employee turnover: The STCC case study, Part 2 (12/13/07) http://www.networkworld.com/newsletters/sec/2007/1210sec2.html

4.        *Reducing employee turnover: The STCC case study, Part 1 (12/11/07) http://www.networkworld.com/newsletters/sec/2007/1210sec1.html

5.        Podcasts busting out at CERT/CC (12/06/07) http://www.networkworld.com/newsletters/sec/2007/1203sec2.html

6.        Privaris offers multi-use biometric token (12/04/07) http://www.networkworld.com/newsletters/sec/2007/1203sec1.html

7.        Free password generators, Part 3 (11/29/07) http://www.networkworld.com/newsletters/sec/2007/1126sec2.html

8.        Free password generators, Part 2 (11/27/07) http://www.networkworld.com/newsletters/sec/2007/1126sec1.html

9.        Free password generators, Part 1 (11/20/07) http://www.networkworld.com/newsletters/sec/2007/1119sec1.html

10.     ISACA Winnipeg’s bestseller list: Build Security In (11/15/07) http://www.networkworld.com/newsletters/sec/2007/1112sec2.html

11.     *Social engineering in penetration testing: Overload and fascination (11/13/07) http://www.networkworld.com/newsletters/sec/2007/1112sec1.html

12.     *Social engineering in penetration testing: Intimidation (11/08/07) http://www.networkworld.com/newsletters/sec/2007/1105sec2.html

13.     Social engineering in penetration testing: Postmortem (11/06/07) http://www.networkworld.com/newsletters/sec/2007/1105sec1.html

14.     Social engineering in penetration testing: Planning (11/01/07) http://www.networkworld.com/newsletters/sec/2007/1029sec2.html

15.     *Social engineering in penetration testing: Analysis (10/30/07) http://www.networkworld.com/newsletters/sec/2007/1029sec1.html

16.     *Social engineering in penetration testing: Cases (10/25/07) http://www.networkworld.com/newsletters/sec/2007/1022sec2.html

17.     Incident response: Don’t lie (10/23/07) http://www.networkworld.com/newsletters/sec/2007/1022sec1.html

18.     Hidden costs of passwords. (10/18/07) http://www.networkworld.com/newsletters/sec/2007/1015sec2.html

19.     Jason Holloway’s Holy Grail (10/16/07) http://www.networkworld.com/newsletters/sec/2007/1015sec1.html

20.     Password management: Facing the problem (10/11/07) http://www.networkworld.com/newsletters/sec/2007/1008sec2.html

21.     The way we frame risks influences perception (10/09/07) http://www.networkworld.com/newsletters/sec/2007/1008sec1.html

22.     Why passwords are passé (10/04/07) http://www.networkworld.com/newsletters/sec/2007/1001sec2.html

23.     ISP liability and ‘Net neutrality: an update (10/02/07) http://www.networkworld.com/newsletters/sec/2007/1001sec1.html

24.     The Dao of Microsoft (9/27/07) http://www.networkworld.com/newsletters/sec/2007/0924sec2.html

25.     *CSIRT Management: Politics (9/25/07) http://www.networkworld.com/newsletters/sec/2007/0924sec1.html

26.     *CSIRT Management: Problem-tracking software (9/20/07) http://www.networkworld.com/newsletters/sec/2007/0917sec2.html

27.     *CSIRT Management: Triage (9/18/07) http://www.networkworld.com/newsletters/sec/2007/0917sec1.html

28.     DRM for online versions of magazines (9/13/07) http://www.networkworld.com/newsletters/sec/2007/0910sec2.html

29.     Mail-order bride scams (9/11/07) http://www.networkworld.com/newsletters/sec/2007/0910sec1.html

30.     Ethical decision-making: Principles, rights and duties, and intuitive cues (9/06/07) http://www.networkworld.com/newsletters/sec/2007/0903sec2.html

31.     Ethical decision-making: Using formal and informal guidelines (9/04/07) http://www.networkworld.com/newsletters/sec/2007/0903sec1.html

32.     Ethical decision-making: Identifying the ethical issue (8/30/07) http://www.networkworld.com/newsletters/sec/2007/0827sec2.html

33.     Hacker tips published in Wall Street Journal (8/28/07) http://www.networkworld.com/newsletters/sec/2007/0827sec1.html

34.     New CISSP concentrations (8/23/07) http://www.networkworld.com/newsletters/sec/2007/0820sec2.html

35.     CISSP certification is evolving (8/21/07) http://www.networkworld.com/newsletters/sec/2007/0820sec1.html

36.     *Best practices for online shopping, Part 2 (8/16/07) http://www.networkworld.com/newsletters/sec/2007/0813sec2.html

37.     *Best practices for online shopping, Part 1 (8/14/07) http://www.networkworld.com/newsletters/sec/2007/0813sec1.html

38.     The last ‘word’ in file recovery: Google Desktop (8/09/07) http://www.networkworld.com/newsletters/sec/2007/0806sec2.html

39.     Disk data remanence: Part 2 (807/07) http://www.networkworld.com/newsletters/sec/2007/0806sec1.html

40.     Disk data remanence: Part 1 (8/02/07) http://www.networkworld.com/newsletters/sec/2007/0730sec2.html

41.     Strengthening defenses against cyberwar (7/31/07) http://www.networkworld.com/newsletters/sec/2007/0730sec1.html

42.     How far could cyberwar go? (7/26/07) http://www.networkworld.com/newsletters/sec/2007/0723sec2.html

43.     YouSendIt provides useful, secure transfer service (7/24/07) http://www.networkworld.com/newsletters/sec/2007/0723sec1.html

44.     Yahoo Groups support appropriate-use policies for e-mail (7/19/07) http://www.networkworld.com/newsletters/sec/2007/0716sec2.html

45.     Managing private e-mail at work (7/17/07) http://www.networkworld.com/newsletters/sec/2007/0716sec1.html

46.     Security workforce study reveals salaries, hot technologies (7/12/07) http://www.networkworld.com/newsletters/sec/2007/0709sec2.html

47.     PayPal Security Key: Two-factor authentication for $5 (7/10/07) http://www.networkworld.com/newsletters/sec/2007/0709sec1.html

48.     *Talk to upper management about security (7/05/07) http://www.networkworld.com/newsletters/sec/2007/0702sec2.html

49.     New INFOSEC workbook now online (7/03/07) http://www.networkworld.com/newsletters/sec/2007/0702sec1.html

50.     Automated harassment (6/28/07) http://www.networkworld.com/newsletters/sec/2007/0625sec2.html

51.     VAleat quantum VAlere potest (6/26/07) http://www.networkworld.com/newsletters/sec/2007/0625sec1.html

52.     VAnishing confidence (6/21/07) http://www.networkworld.com/newsletters/sec/2007/0618sec2.html

53.     VAgue promises of improvement (6/19/07) http://www.networkworld.com/newsletters/sec/2007/0618sec1.html

54.     VAgaries of wandering data (6/14/07) http://www.networkworld.com/newsletters/sec/2007/0611sec2.html

55.     PIIssed off yet? (6/12/07) http://www.networkworld.com/newsletters/sec/2007/0611sec1.html

56.     CIMIP fights identity theft (607/07) http://www.networkworld.com/newsletters/sec/2007/0604sec2.html

57.     E-tickets for air travel by end of 2007) (6/05/07) http://www.networkworld.com/newsletters/sec/2007/0604sec1.html

58.     Freedom of speech and its consequences (5/31/07) http://www.networkworld.com/newsletters/sec/2007/0528sec2.html

59.     Lack of moderation (5/29/07) http://www.networkworld.com/newsletters/sec/2007/0528sec1.html

60.     Brennan Center provides resources for security activists (5/24/07) http://www.networkworld.com/newsletters/sec/2007/0521sec2.html

61.     Identification vs. knowledge (5/22/07) http://www.networkworld.com/newsletters/sec/2007/0521sec1.html

62.     Identification isn’t enough (5/17/07) http://www.networkworld.com/newsletters/sec/2007/0514sec2.html

63.     The debate over national ID cards (5/15/07) http://www.networkworld.com/newsletters/sec/2007/0514sec1.html

64.     Secuware Security Framework offers interesting functionality (5/10/07) http://www.networkworld.com/newsletters/sec/2007/0507sec2.html

65.     Guide to NIST security documents (5/08/07) http://www.networkworld.com/newsletters/sec/2007/0507sec1.html

66.     Fair and balanced: Enforcing security policies for workstations (5/03/07) http://www.networkworld.com/newsletters/sec/2007/0430sec2.html

67.     ProCurve Networking site has useful white papers (5/01/07) http://www.networkworld.com/newsletters/sec/2007/0430sec1.html

68.     CSIRTM resources online (4/26/07) http://www.networkworld.com/newsletters/sec/2007/0423sec2.html

69.     NoticeBored not boring (4/24/07) http://www.networkworld.com/newsletters/sec/2007/0423sec1.html

70.     The persistence of memory: free speech and career prospects (4/19/07) http://www.networkworld.com/newsletters/sec/2007/0416sec2.html

71.     Free speech and corporate policy (4/17/07) http://www.networkworld.com/newsletters/sec/2007/0416sec1.html

72.     Personal expression vs. corporate policy (4/12/07) http://www.networkworld.com/newsletters/sec/2007/0409sec2.html

73.     Upcoming (ISC)2 seminars (4/10/07) http://www.networkworld.com/newsletters/sec/2007/0409sec1.html

74.     Pesky SiteKey problems (4/05/07) http://www.networkworld.com/newsletters/sec/2007/0402sec2.html

75.     SiteKey tries to counter phishing (4/03/07) http://www.networkworld.com/newsletters/sec/2007/0402sec1.html

76.     Shiftwork and security (3/29/07) http://www.networkworld.com/newsletters/sec/2007/0326sec2.html

77.     Waving a red flag (3/27/07) http://www.networkworld.com/newsletters/sec/2007/0326sec1.html

78.     The people’s flag is deepest red (3/22/07) http://www.networkworld.com/newsletters/sec/2007/0319sec2.html

79.     Proposed rulemaking against identity theft (3/20/07) http://www.networkworld.com/newsletters/sec/2007/0319sec1.html

80.     ‘Breakpoint’ echoes current news (3/15/07) http://www.networkworld.com/newsletters/sec/2007/0312sec2.html

81.     *Effects of full disclosure (3/13/07) http://www.networkworld.com/newsletters/sec/2007/0312sec1.html

82.     *To disclose or not to disclose (3/08/07) http://www.networkworld.com/newsletters/sec/2007/0305sec2.html

83.     *Follow-up: On hacker conventions, SecurityFocus and list sponsorship (3/06/07) http://www.networkworld.com/newsletters/sec/2007/0305sec1.html

84.     Transgressing the unwritten law (3/01/07) http://www.networkworld.com/newsletters/sec/2007/0226sec2.html

85.     *Book tells story of victims of cybercrime (2/27/07) http://www.networkworld.com/newsletters/sec/2007/0226sec1.html

86.     CIRT Management: Share the knowledge (2/22/07) http://www.networkworld.com/newsletters/sec/2007/0219sec2.html

87.     EDPACS archive a treasure trove (2/20/07) http://www.networkworld.com/newsletters/sec/2007/0219sec1.html

88.     CIRT Management: Continuous process improvement (2/15/07) http://www.networkworld.com/newsletters/sec/2007/0212sec2.html

89.     CIRT management: Root-cause analysis (2/13/07) http://www.networkworld.com/newsletters/sec/2007/0212sec1.html

90.     *E-mail retention policies, Part 2 (2/08/07) http://www.networkworld.com/newsletters/sec/2007/0205sec2.html

91.     *E-mail retention policies, Part 1 (2/06/07) http://www.networkworld.com/newsletters/sec/2007/0205sec1.html

92.     *CIRT management: Learning from emergencies (2/01/07) http://www.networkworld.com/newsletters/sec/2007/0129sec2.html

93.     The Net 2.0: Identity theft in Istanbul (1/30/07) http://www.networkworld.com/newsletters/sec/2007/0129sec1.html

94.     Information assurance in Beer-sheba (1/25/07) http://www.networkworld.com/newsletters/sec/2007/0122sec2.html

95.     *Industrial espionage in action (1/23/07) http://www.networkworld.com/newsletters/sec/2007/0122sec1.html

96.     *A counter-intelligence perspective (1/18/07) http://www.networkworld.com/newsletters/sec/2007/0115sec2.html

97.     Preparing for the CISSP exam, Part 4 (1/16/07) http://www.networkworld.com/newsletters/sec/2007/0115sec1.html

98.     Preparing for the CISSP exam, Part 3 (1/11/07) http://www.networkworld.com/newsletters/sec/2007/0108sec2.html

99.     Preparing for the CISSP exam, Part 2 (1/09/07) http://www.networkworld.com/newsletters/sec/2007/0108sec1.html

100.  Preparing for the CISSP exam, Part 1 (1/04/07) http://www.networkworld.com/newsletters/sec/2007/0101sec2.html

101.  On hacker conventions, SecurityFocus and list sponsorship (1/02/07) http://www.networkworld.com/newsletters/sec/2007/0101sec1.html

2006

Intellectual property developments in 2006. In: 2006 Year in Review, Peltier Associates, pp 28-30. (no longer available online)

Tips for Using MS-Word http://www.mekabay.com/methodology/word_tips.pdf

Ubiquity Magazine of the Association for Computing Machinery

·          The Net Neutrality Debate (5/23/06) http://www.acm.org/ubiquity/views/v7i20_neutrality.html

Network World Security Strategies newsletter http://www.networkworld.com/newsletters/sec/

* indicates guest authors.

1.        ALEatory ALE (12/21/06) http://www.networkworld.com/newsletters/sec/2006/1218sec2.html

2.        Cybersecurity management, Part 4 (12/19/06) http://www.networkworld.com/newsletters/sec/2006/1218sec1.html

3.        Cybersecurity management, Part 3 (12/14/06) http://www.networkworld.com/newsletters/sec/2006/1211sec2.html

4.        Cybersecurity management, Part 2 (12/12/06) http://www.networkworld.com/newsletters/sec/2006/1211sec1.html

5.        Cybersecurity management, Part 1 (12/07/06) http://www.networkworld.com/newsletters/sec/2006/1204sec2.html

6.        *Evaluate your cyber-intelligence (12/05/06) http://www.networkworld.com/newsletters/sec/2006/1204sec1.html

7.        Software, music and movie pirates keelhauled (11/30/06) http://www.networkworld.com/newsletters/sec/2006/1127sec2.html

8.        Crime and punishment (11/28/06) http://www.networkworld.com/newsletters/sec/2006/1127sec1.html

9.        CIRT management: Avoiding burnout (11/21/06) http://www.networkworld.com/newsletters/sec/2006/1120sec1.html

10.     CIRT management: Setting the rules for triage (11/16/06) http://www.networkworld.com/newsletters/sec/2006/1113sec2.html

11.     Plagiarism outside the classroom (11/14/06) http://www.networkworld.com/newsletters/sec/2006/1113sec1.html

12.     OCEG Red Book on risk management (11/09/06) http://www.networkworld.com/newsletters/sec/2006/1106sec2.html

13.     OCEG provides valuable resources (11/07/06) http://www.networkworld.com/newsletters/sec/2006/1106sec1.html

14.     Dan Swanson on IT auditing (11/02/06) http://www.networkworld.com/newsletters/sec/2006/1030sec2.html

15.     Identifying problem Internet users (10/31/06) http://www.networkworld.com/newsletters/sec/2006/1030sec1.html

16.     Metadata (10/26/06) http://www.networkworld.com/newsletters/sec/2006/1023sec2.html

17.     More on ‘Net neutrality (10/24/06) http://www.networkworld.com/newsletters/sec/2006/1023sec1.html

18.     Check out Avert Labs’ blog (10/19/06) http://www.networkworld.com/newsletters/sec/2006/1016sec2.html

19.     Picking out digital image forgeries (10/17/06) http://www.networkworld.com/newsletters/sec/2006/1016sec1.html

20.     Michigan CISO speaks online (10/12/06) http://www.networkworld.com/newsletters/sec/2006/1009sec2.html

21.     Paperless e-voting fails again (10/10/06) http://www.networkworld.com/newsletters/sec/2006/1009sec1.html

22.     PSYOP in action (10/05/06) http://www.networkworld.com/newsletters/sec/2006/1002sec2.html

23.     NIST guide to forensics in incident response (10/03/06) http://www.networkworld.com/newsletters/sec/2006/1002sec1.html

24.     NIST guidelines on cell phone forensics (9/28/06) http://www.networkworld.com/newsletters/sec/2006/0925sec2.html

25.     Survey describes state of security management (9/26/06) http://www.networkworld.com/newsletters/sec/2006/0925sec1.html

26.     NIST guide to secure Web services (9/21/06) http://www.networkworld.com/newsletters/sec/2006/0918sec2.html

27.     Beware of vicious ‘vishing’ villains (9/19/06) http://www.networkworld.com/newsletters/sec/2006/0918sec1.html

28.     NIST guide to IDP systems (9/14/06) http://www.networkworld.com/newsletters/sec/2006/0911sec2.html

29.     The Ostrich Maneuver: Burying bad news is a bad idea (9/12/06) http://www.networkworld.com/newsletters/sec/2006/0911sec1.html

30.     NIST guidelines on e-mail security (9/07/06) http://www.networkworld.com/newsletters/sec/2006/0904sec2.html

31.     Legal aspects of managing technology (8/31/06) http://www.networkworld.com/newsletters/sec/2006/0904sec1.html

32.     Two cybercrime textbooks (8/31/06) http://www.networkworld.com/newsletters/sec/2006/0828sec2.html

33.     The Thin Edge (8/29/06) http://www.networkworld.com/newsletters/sec/2006/0828sec1.html

34.     Flights of fancy (8/24/06) http://www.networkworld.com/newsletters/sec/2006/0821sec2.html

35.     That Won’t Fly: How new airplane rules could affect you (8/22/06) http://www.networkworld.com/newsletters/sec/2006/0821sec1.html

36.     U.S. OMB mandates laptop disk encryption as No. 1 precaution (8/17/06) http://www.networkworld.com/newsletters/sec/2006/0814sec2.html

37.     Business discontinuity (8/15/06) http://www.networkworld.com/newsletters/sec/2006/0814sec1.html

38.     More honored in the breach than in the breeches (8/10/06) http://www.networkworld.com/newsletters/sec/2006/0807sec2.html

39.     Fighting plagiarism (8/08/06) http://www.networkworld.com/newsletters/sec/2006/0807sec1.html

40.     Ohio University coping with information breaches (8/03/06) http://www.networkworld.com/newsletters/sec/2006/0731sec2.html

41.     MS-ISAC continues useful Webcasts (8/01/06) http://www.networkworld.com/newsletters/sec/2006/0731sec1.html

42.     DRM-roll for consumer privacy protection (7/27/06) http://www.networkworld.com/newsletters/sec/2006/0724sec2.html

43.     ‘Sage’ advice from McAfee (7/25/06) http://www.networkworld.com/newsletters/sec/2006/0724sec1.html

44.     The eyes have it (7/20/06) http://www.networkworld.com/newsletters/sec/2006/0717sec2.html

45.     Tips for implementing encryption on stored data (7/18/06) http://www.networkworld.com/newsletters/sec/2006/0717sec1.html

46.     IRS wants to liberate our tax returns (7/13/06) http://www.networkworld.com/newsletters/sec/2006/0710sec2.html

47.     Follow the rules - unless you shouldn’t follow the rules (7/11/06) http://www.networkworld.com/newsletters/sec/2006/0710sec1.html

48.     Excel helpers can damage data (7/06/06) http://www.networkworld.com/newsletters/sec/2006/0703sec2.html

49.     BCC prevents e-mail nuisances (6/29/06) http://www.networkworld.com/newsletters/sec/2006/0626sec2.html

50.     Control visible distribution lists in e-mail (6/27/06) http://www.networkworld.com/newsletters/sec/2006/0626sec1.html

51.     Production spreadsheets can cause problems (6/22/06) http://www.networkworld.com/newsletters/sec/2006/0619sec2.html

52.     The computer said so: Credulity vs. credibility (6/20/06) http://www.networkworld.com/newsletters/sec/2006/0619sec1.html

53.     GAO slams FCC on junk fax processing (6/15/06) http://www.networkworld.com/newsletters/sec/2006/0612sec2.html

54.     DHCP is a core technology for network access control (6/13/06) http://www.networkworld.com/newsletters/sec/2006/0612sec1.html

55.     Leaky BlackBerry spills the juice (6/08/06) http://www.networkworld.com/newsletters/sec/2006/0605sec2.html

56.     Unexpected consequences of HIPAA (6/06/06) http://www.networkworld.com/newsletters/sec/2006/0605sec1.html

57.     Unsubscribing not so easy (6/01/06) http://www.networkworld.com/newsletters/sec/2006/0529sec2.html

58.     Wandering laptops should teach lessons (5/30/06) http://www.networkworld.com/newsletters/sec/2006/0529sec1.html

59.     Interpersonal relations matter (5/25/06) http://www.networkworld.com/newsletters/sec/2006/0522sec2.html

60.     Standards can help in communicating security issues to executives (5/23/06) http://www.networkworld.com/newsletters/sec/2006/0522sec1.html

61.     Encrypting backups to avoid disasters (5/18/06) http://www.networkworld.com/newsletters/sec/2006/0515sec2.html

62.     Privacy conference: Schneier comes to Vermont (5/16/06) http://www.networkworld.com/newsletters/sec/2006/0515sec1.html

63.     Postal inspectors provide valuable fraud awareness resources (5/11/06) http://www.networkworld.com/newsletters/sec/2006/0508sec2.html

64.     ISP liability and ‘Net neutrality, Part 2 (5/09/06) http://www.networkworld.com/newsletters/sec/2006/0508sec1.html

65.     ISP liability and ‘Net neutrality, Part 1 (5/04/06) http://www.networkworld.com/newsletters/sec/2006/0501sec2.html

66.     Not TEOTIAWKI (5/02/06) http://www.networkworld.com/newsletters/sec/2006/0501sec1.html

67.     ‘Net neutrality debate heats up (4/27/06) http://www.networkworld.com/newsletters/sec/2006/0424sec2.html

68.     Web-site security Web site (4/25/06) http://www.networkworld.com/newsletters/sec/2006/0424sec1.html

69.     BCI offers useful guidance (4/20/06) http://www.networkworld.com/newsletters/sec/2006/0417sec2.html