Total Pageviews

Thursday, April 27, 2017

Symantec - Internet Security Threat Report. Vol. 22

Symantec - Internet Security Threat Report. Vol. 22, April 2017, 77 pages. 
"The Symantec Global Intelligence Network tracks over 700,000 global adversaries and records events from 98 million attack sensors worldwide. This network monitors threat activities in over 157 countries and territories through a combination of Symantec products, technologies, and services, including Symantec Endpoint Protection™, Symantec DeepSight™ Intelligence, Symantec Managed Security Services™, Norton™ consumer products, and other third-party data sources, generating more than nine trillion rows of security data... "    Download the report. 

Hacking Back – Offense/Defense in Enterprise IT Security

"Hacking Back – Offense/Defense in Enterprise IT Security", by Edgar Hurtado Jr, East Carolina University ICTN-4040: Enterprise Information Security, April 2017, 9 pages. 

IISS Cyber Report: 13 to 19 April, 2017

"IISS Cyber Report: 13 to 19 April", 2017. This online report is a weekly digest of the world's cyber security news.

A Tech Accord to protect people in cyberspace

"A Tech Accord to protect people in cyberspace", Microsoft Policy Papers, April 2017. 
"People need to trust technology, the makers of technology, and cyberspace itself" [...] "The government and the technology industry must partner on cybersecurity". 
Microsoft suggests to share responsibilities in the governance of cybersecurity between private and state actors. 

A Digital Geneva Convention to protect cyberspace

"A Digital Geneva Convention to protect cyberspace", Microsoft Policy Papers, April 2017. 
"Governments continue to invest in greater offensive capabilities in cyberspace, and nation-state attacks on civilians are on the rise" [...] "A Digital Geneva Convention would create a legally binding framework to govern states’ behavior in cyberspace". 

An attribution organization to strengthen trust online

"An attribution organization to strengthen trust online", Microsoft Policy Papers, April 2017. 
"The world needs a new form of cyber defense. An organization that could receive and analyze the evidence related to a suspected state-backed cyberattack, and that could then credibly and publicly identify perpetrators, would make a major difference to the trust in the digital world." [...] "The expertise of private sector technology firms should be the basis of this non-political, technicallyfocused attribution organization."

But should the privatization of such attribution function guarantee transparency, efficiency, and politically-neutral analysis and interpretation of facts and data? 

Wednesday, April 26, 2017

Cybersecurity in the Defense Acquisition System

"Cybersecurity in the Defense Acquisition System", DAU, USA, April 2017, 27 pages. Download