Welcome to Orcmid's Lair, the playground for family connections, pastimes, and scholarly vocation -- the collected professional and recreational work of Dennis E. Hamilton

 

Inside-Out Security

ACM News Service: Security From the Inside Out.  The news blurb emphasizes that multilayered approaches are being employed to protect enterprise systems, although attack against applications is considered a specific area of weakness aggrevated by the lack of security focus during application development.

The 2004-04-21 Dan Farber ZDNet article provides more meat.  It is not clear to me that the simulated-attack approach to application vulnerability detection is enough.  I have been waiting to discover how attack detection system will help in repair/correction. I suppose this is related to the still-mysterious autonomic repair promise.  Oh, I can envision denial-of-service attacks that work by attacking the detection and fail-over provisions of a system.  Tricky, tricky.
posted by Dennis at 5/18/2004 04:15:01 PM