Archive for January, 2006

No Plan survives contact with the Enemy

Thursday, January 26th, 2006

After participating in a business continuity session around the pandemic flu scenario (a la Avian Flu), it became clear that many organizations will be left wondering what happened to their careful planning.
At the root of most failed plans are the wrong assumptions that were never challenged. Let’s explore one of those elements.
Most companies will [...]

Posted in General | No Comments »

Is the firewall enough? No…

Wednesday, January 25th, 2006

In my Illusions of Information Security white paper, I make the point that if you wanted to protect something really important (like your data), you’d want the perimeter fence (the firewall) AND the alarm system (the Intrusion Detection System). You’ve run out of excuses for failing to act.
StillSecure announced a freeware IDS. We’ll be tossing [...]

Posted in Anti-Threat, Assessments, Networks | No Comments »