security
CAST workshop on development security
- Albert Zenkoff
- 2018-03-13
- General, CAST, cloud, cloud security, conference, DevOps, security, workshop
We are holding our yearly security conference in Darmstadt on the 22nd of March – that’s next week – together with our partners from Fraunhofer SIT and CAST. This time, the focus subject will be DevOps and cloud technologies, including both operations and development preparation for the security in the cloud. The speakers are prepared ...
Read More
A company with an SQL injection name
- Albert Zenkoff
- 2017-01-19
- Society, attack, company, fun, prank, security, SQL injection
Finally, someone registered a company that is an SQL injection attack. We saw the license plates on cars doctored to execute SQL injection attacks but this is the first time, I think, that an attempt to crash all business SQL databases in a country is made. The company name is: ; DROP TABLE “COMPANIES”;– LTD ...
Read More
CAST Workshop “Secure Software Development”
- Albert Zenkoff
- 2015-09-21
- Management, best practices, CAST, event, security, share, software development, workshop
We are organizing the workshop on “Secure Software Development” now for the third year in a row. As usual, the workshop is in Darmstadt and the logistics is cared for by the CAST e.V. The date for the workshop is 12 November. This year most presentations seem to be in German, so probably it does ...
Read More
The human factor: philosophy and engineering
- Albert Zenkoff
- 2015-04-22
- Management, arete, blind men and an elephant, engineering, excellence, holistic approach, long-term view, philosophy, quality, security, systemic approach, value, virtue
The ancient Greeks had a concept of “aretê” (/ˈærətiː/) that is usually loosely translated to English as “quality”, “excellence”, or “virtue”. It was all that and more: the term meant the ultimate and harmonious fulfillment of task, purpose, function, or even the whole life. Living up to this concept was the highest achievement one could ...
Read More
Security Forum Hagenberg 2015
- Albert Zenkoff
- 2015-03-29
- Society, announcement, Austria, Hagenberg im Mühlkreis, human factor, philosophy, presentation, public, security, Security Forum, talk
I will be talking about the philosophy in engineering or the human factor in the development of secure software at the Security Forum in Hagenberg im Mühlkreis, Austria on 22nd of April. https://www.securityforum.at/en/ My talk will concentrate on the absence of a holistic, systemic approach in the current software development as a result of taking ...
Read More
Workshop on Agile Development of Secure Software (ASSD’15)
- Albert Zenkoff
- 2015-01-30
- Management, Agile Development of Secure Software, announcement, ARES, ASSD, call for papers, development of secure systems, security, Security awareness, Security metrics, workshop
Call for Papers: First International Workshop on Agile Development of Secure Software (ASSD’15) in conjunction with the 10th International Conference on Availability, Reliability and Security (ARES’15) August 24-28, 2015, Université Paul Sabatier, Toulouse, France Submission Deadline: April 15, 2015 Workshop website: http://www.ares-conference.eu/conference/workshops/assd-2015/ Scope Most organizations use the agile software development methods, such as Scrum and ...
Read More
About the so-called “uncertainty principle of new technology”
- Albert Zenkoff
- 2015-01-08
- Technology, arete, beauty, Collingridge Dilemma, engineering, harmony, inherently hard, new technology, quality, scientific discovery, security, society
It has been stated that the new technology possesses an inherent characteristic that makes it hard to secure. This characteristic is articulated by David Collingridge in what many would like to see accepted axiomatically and even call it the “Collingridge Dilemma” to underscore its immutability: That, when a technology is new (and therefore its spread ...
Read More
Sony 2014 network breach, the most interesting question remains unanswered
- Albert Zenkoff
- 2014-12-23
- Management, attack, bigger picture, breach, infiltration, information extraction, network, purpose of attack, question, security, Sony
The November 2014 breach of security at Sony Corporation remains the subject of conversation throughout the end of the year. Many interesting details have become known while even more remains hidden. Most claims and discussions only serve to create noise and diversion though. Take the recent discussion of the antivirus software, for example. Sony Corporation ...
Read More
Visualization of world’s largest data breaches
- Albert Zenkoff
- 2014-11-11
- Management, biggest, breach, bubble, data, diagram, entertaining, interesting, losses, security, useful, visual, visualization, world
I stumbled upon a very interesting infographic that portrays some of the world’s biggest data breaches in a running bubble diagram. Entertaining and potentially useful in presentations Have a look.
Read More
Crypto Wars 2.0: Let the Trolling Commence (and don’t trust your phone)
- Albert Zenkoff
- 2014-11-03
- Society, attacks, crypto, Cryptography, device, encryption, limitations, mobile, security, Sven Tuerpe, system
An excellent article by Sven Tuerpe argues that we pay excessive attention to the problems of encryption and insufficient – to the problems of system security. I wholeheartedly agree with that statement. Read the original article: Crypto Wars 2.0: Let the Trolling Commence (and don’t trust your phone). Security cannot be based solely on the ...
Read MoreAbout the author
Albert Zenkoff
Managing corporate security in both technical and business sense in the context of long-term business strategy and sustainability.
For security consulting, training, certification and audit mail albert@aruberusan.com.
Share and stay updated
