Reaffirmed: You really do have a part to play in Internet security

Like most people I have an opinion. I hold pretty strong opinions about certain topics, one of which is user security education. In “real life”, we tell our children and our families:”Dont trust everything you see and read”. “Don’t accept candy from strangers””Dont stray down dark alleys”…. You get the idea…. Hmm. Why dont we…


Stupid Airport security

No doubt there are going to be people reading this with stories of their own. My story was prompted by a read of (my now new favourite site) in which airport security let a guy take a chainsaw on the plane but not someone with toe nail clippers. I remember about a year ago…


Shredding Hard Disks? Huh?

I remember a long time ago when I actually did do “real work”, I did a statewide tour helping a government agency on a new desktop replacement rollout. Part of the job was switching out hard drives for bigger ones and the reimaging them with the new SOE. Due to the very sensitive nature of…


ITRadio podcast with Jeff Alexander and Peter Watson

My direct colleague Jeff Alexander and our chief security officer here in Australia, Peter Watson together did a podcast with ITRadio’s Patrick Gray while at AusCERT recently. Jeff talked all about one of my favourite technologies, Network Access Protection (NAP) and how it helps with network policy compliance. Take the time to listen if you…


Windows Vista less secure than Windows 2000??

I read this article from Angus today with much amusement. Apparently Vista is more insecure than Windows 2000. I found this really very funny. Why? The number of virus infections found by a virus vendor does not necessarily equal poor security. In many cases (though not all) it equals poor user behaviour. Why? If I,…


Blogcast: Starting an End User Security Discussion

Recently I’ve been thinking more and more about the problem of end user risk. It was prompted by some discussions with a small company here who lamented that they had to place extreme policy controls in place because their users would “wreck it ” otherwise… So I thought – I wonder why their users are…


Why does Wireless Security need to cost much?

I was reading the Australian Reseller News article today on wireless security. It had me intrigued that people seem to equate wireless security with a costly deployment. “…Three quarters of respondents said that security spending was going to rise because of wireless and mobile technology, with half figuring this as a rise of 10 percent,…


DSD includes Windows Mobile 5 and 6 in the Common Criteria Evaluation

This is news that really turns heads! The Common Criteria standard (through the evaluation of the Australian DSD (Defense Signals Directorate)) is in the process of evaluating Windows Mobile 5 and 6 for EAL 2+. That really highlights the moves Windows Mobile has placed in security to be able to even evaluate under this standard.