Security Policy

Dec 10th, 2008

Comments: 1
Category: Security Policy
Read More

Catching out dodgy security policies

Here’s a question to ask your security policy people, to see whether their recommendations are actually risk based or just “best guesses”… “Have you updated the minimum password length/complexity requirements due to recent advances in password cracking speeds?” I was reading a couple of posts on the Red Database Security blog (here and here, and […]

Jun 23rd, 2005

Category: Security Policy
Read More

PCI link and commentary

Network and IT Security Management Blog: Correlation Central – Network Security Blog: MasterCard PCI / SDP Framework An interesting posting about the credit card industry’s PCI security standard, and some commentary on it.

Jun 21st, 2004

Comments: 0
Category: Security Policy
Read More

Interesting Article about Security Policies

An interesting article at nwfusion give us The scoop on security policies. There are some good points in the article about keeping the policy short and to the point, although I’ve tended to find that in larger companies it is a real challenge to convey all the information that you need to, to your userbase […]