Whitepaper called Browser Security Comparison: A Quantitative Approach. The Accuvant LABS research team completed an extensive security evaluation of the three most widely used browsers – Mozilla Firefox, Google Chrome, and Microsoft Internet Explorer – to determine which browser best secures against attackers. The team used a completely different and more extensive methodology than previous, similar studies. They compared browsers from a layered perspective, taking into account security architecture and anti-exploitation techniques.
264a3b0c9d9007c6544319b4853db82aA whitepaper called An Approach To Malware Collection Log Visualization.
68451305fcf376b8af541a299bd57cc1This paper discusses potential security weaknesses that may be present in messaging systems either as a result of software flaws, application design or the misconfigurations of services. It focuses on TIBCO Rendezvous, as an example of a commonly used enterprise messaging system. Recommendations are then presented which mitigate these security issues.
cfb45eac3e565e1e32e3b0effda2bb2cAnalysis whitepaper detailing Cyber-terrorism defacement attacks on pro-Israeli servers by Team Evil.
cd58676a855e3110470539b1f2e283ceA paper discussing the various vulnerabilities in DNS: "The vulnerabilities described in this advisory affect implementations of the Domain Name System (DNS) protocol. Many vendors include support for this protocol in their products and may be impacted to varying degrees, if at all."
c8abc61b42b138d3c3d926fb910adcbaThe Web Application Firewall Evaluation Criteria project is proud to announce version 1.0 of The Web Application Firewall Evaluation Criteria (WAFEC), its first official release. WAFEC is a result of a collaboration between web application firewall vendors and independent security professionals to create a comprehensive, vendor-neutral, web application firewall evaluation criteria. The resulting framework can be used to evaluate and and compare web application firewalls.
4d4eda95d3d204f066c8b918b4bd33dfGAO Report - Federal Efforts to Improve Security and Reliability of Electronic Voting Systems Are Under Way, but Key Activities Need to Be Completed.
8eeefc7fddcce2eed5072ec24aaa324eShort white paper discussing some questionable circumstances surrounding the Barracuda Spam Firewall appliances.
22e306314aff01e51ae946c5cbdafa36A paper released by Relevant Technologies discussing the commercial CyberAngel product that provides laptop recovery and file encryption all-in-one.
a814500ef04667c489c0b172464fef6eA paper released by Relevant Technologies discussing ways and means to combat Spam using various filters available.
c45d69b733a6f9e11eed6ebf8d0284bbNetwork Intrusion Detection of Third Party Effects v1.0.1 - This paper describes "third party effects," generally caused by adversaries spoofing your IP addresses while attacking an unrelated victim. The events are explained from the points of view of the three parties: the first party (the adversary), the second (the victim), and you, the third party (the bystander whose IPs were spoofed.) The paper includes packet captures, diagrams, and material not originally presented in the author's "Interpreting Network Traffic," such as a comparison of SYN vs ACK floods.
57e6dc93138b9ca825a94fd48e4825b3This paper is the culmination of research that describes the DOCSIS standard and related information for the purpose of explaining exactly how cable networks (@home, RoadRunner, Mediaone) are implemented from the service provider to the home. This includes details on the cryptography used, the frequencies data is transmitted on, and hardware explanations. A recommended read for anyone interested in cable-modem networks.
83354456fa9671afa5117e23f0543865Canadian Trusted Computer Product Evaluation Criteria, Part 1: The Canadian "Orange Book."
93c363a746e2bfb98d6f4f38936951b2Canadian Trusted Computer Product Evaluation Criteria, Part 2: The Canadian "Orange Book."
be08f4f23933233e9fdb88f28da5e849Executive Guide to the Protection of Information Resources: A US National Institute of Standards and Technology publication.
e31e28ea484dfde1ee12a4d332163745Federal Criteria for Information Technology Security, Volume 1: The new "Orange Book"
5d8d06a54a17acbbf1545f9b64645645Federal Criteria for Information Technology Security, Volume 2: The new "Orange Book"
4dc96eeddc81188538f29e6a0ad4dfd3Green Book on the Security of Information Systems: A document that sets out the development of a consistent approach to Information Security in Europe, taking into account common interests with other countries.
cec64d8e676d6407d26798bfc63b3d21Horses and Barn Doors: Evolution of Corporate Guidelines for Internet Usage: A description of how Intel Corp's Internet usage policies were developed.
be0c53edb4d2c77c5bf5919edb04453fGuidelines for the Secure Operation of the Internet - RFC 1281: Provides a set of guidelines to aid in the secure operation of the Internet.
c655f512e1336bbf6e328e72ab8baefaInformation Technology Security Evaluation Criteria: The European "Orange Book".
9b10824608a32c0996bb0cfc124f7ae8Management Guide to the Protection of Information Resources: A US National Institute of Standards and Technology publication.
1e1aa49ea8194eea7599f6a529dd6277Protection and Security Issues for Future Systems: An examination of the problems of protection and security as applied to future computer systems.
926e952cf05b176e13e805669b69f9eeDepartment of Defense Trusted Computer System Evaluation Criteria: The "Orange Book".
f7ad13c9a343e2be708d6ecf9f82913a
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed