Newschoolsecurity - newschoolsecurity.com - The New School of Information Security
General Information:
Latest News:
Academic job opening at Cambridge 18 Jul 2013 | 08:54 pm
At Light Blue Touchpaper, Ross Anderson says “We have a vacancy for a postdoc to work on the psychology of cybercrime and deception for two years from October.” I think this role has all sorts of fas...
Google Reader Going Away 30 Jun 2013 | 09:27 pm
Remarkably, some software that people host on your behalf, where you have no contract or just a contract of adhesion, can change at any time. This isn’t surprising to those who study economics, as al...
Updated WordPress 26 Jun 2013 | 09:18 pm
Please let us know if you see anything strange
Workshop on the Economics of Information Security 24 May 2013 | 06:23 pm
The next Workshop on the Economics of Information Security will be held June 11-12 at Georgetown University, Washington, D.C. Many of the papers look fascinating, including “On the Viability of Using ...
TrustZone and Security Usability 23 May 2013 | 09:05 pm
Cem Paya has a really thought-provoking set of blog posts on “TrustZone, TEE and the delusion of security indicators” (part 1, part 2“.) Cem makes the point that all the crypto and execution protectio...
The Onion and Breach Disclosure 9 May 2013 | 09:46 pm
There’s an important and interesting new breach disclosure that came out yesterdau. It demonstrates leadership by clearly explaining what happened and offering up lessons learned. In particular: It sh...
Security Lessons From Star Wars: Breach Response 4 May 2013 | 09:39 pm
To celebrate Star Wars Day, I want to talk about the central information security failure that drives Episode IV: the theft of the plans. First, we’re talking about really persistent threats. Not like...
The Breach Trilogy: Assume, Confirm, Discuss 22 Apr 2013 | 10:14 pm
We’ve been hearing for several years that we should assume breach. Many people have taken this to heart (although today’s DBIR still says it’s still months to detect those breaches). I’d like to propo...
The best part of exploit kits 19 Apr 2013 | 09:02 pm
Following up on my post on exploit kit statistics (no data? really folks?), I wanted to share a bit of a head-shaker for a Friday with way too much serious stuff going on. Sometimes, researchers obscu...
Exploit Kit Statistics 11 Apr 2013 | 09:08 pm
On a fairly regular basis, I come across pages like this one from SANS, which contain fascinating information taken from exploit kit control panels: There’s all sorts of interesting numbers in that pi...
