True’s very own Michael Oglesby was recognized within the credit statement of the Oracle January 2012 CPU for identifying specific vulnerabilities addressed in the report. In a future post, Michael will share insights into the vulnerabilities he uncovered.
For a third year, Verizon Business has embedded a “Cover Challenge” in its annual Data Breach Investigation Report (DBIR). The challenge is an unspecified puzzle hidden within the document. I finished the puzzle in second place after having placed first last year. Congrats to Dan Caselden on his amazingly fast first place win this year.Read more
For the second year in a row, Verizon Business has encoded a “Cover Challenge” in its annual Data Breach Investigation Report. This year I was the first place winner, submitting the correct solution after 1.5 weeks of puzzling.
Verizon 2010 Data Breach Investigation Report
Knowing about last year’s challenge, I took a quick look at this year’s report and didn’t immediately notice anything puzzle related. A few days later Verizon confirmed on their security blog that there was indeed a cover challenge. Game on.Read more
President Obama’s new cyber security policy and the creation of a White House office for cyber defense is a step in the right direction. I think the new cyber boss can be effective regardless of title or hierarchical position within the White House.
According to the Cyberspace Policy Review referenced above, the Federal government cannot succeed in the many facets of securing cyberspace if it works in isolation. The public and private sectors’ interests are intertwined with a shared responsibility for ensuring a secure, reliable infrastructure upon which businesses and government services depend. Government and industry leaders both nationally and internationally need to delineate roles and responsibilities, integrate capabilities, and take ownership of the problem to develop holistic solutions. Only through such partnerships will the United States be able to enhance cyber security and reap the full benefits of the digital revolution.
Whatever the outcome cyber security need the same attention of law enforcement as other crimes.
Sun Microsystems’s CEO announced yesterday its intention (or is it now Oracle’s intention?) to launch an App Store for Java software a la Apple’s iTunes App Store for iPods and iPhones. Slashdotters responded with typical jokes about how slow Java apps seem to be. Jokes about molasses aside, is this a good idea? Will it catch on? Initial reactions are mixed.
If executed properly, I think a Java App Store may work. The announcement indicates that Sun engineers will be reviewing all submissions prior to publishing the apps to the world in an effort to minimally evaluate them for “safety and content”, whatever that means. If the evaluations are not too heavy-handed, this may work. If the prices aren’t extravagant, Sun may reach a wide audience, indeed.
