In the back of my mind are the recent attacks against Google and others by the Chinese government. I keep asking myself how I would setup and defend against such attacks, and more importantly mitigate them. The end goal of this exercise for me, is to limit Internet access to devices that have authenticated to [...]
I know some sites trust their servers and let the servers talk to anywhere on the Internet or internally. Just had a thought, instead all servers should be blocked for all traffic except for business needed traffic. What about updates? The servers need to go fetch updates. (In those cases where the patches/updates are not [...]
In this article Whitfield Diffie talks talks about secure cloud computing. I take comfort in knowing that he and I used to work for the same company, Sun Microsystems. There are some really smart people at Sun. The article is small and I recommend reading it. I specifically quote part of the article below as [...]
Recent Comments