SearchSecurity

Identity and access management

Identity and access management tools are integral to maintaining data security in the enterprise. Here you'll find information on passwords, authentication and Web access control. Browse the identity management and access control topics below for the latest news, expert advice, learning tools and more.

Recent Definitions

• unique identifier (UID)

  A unique identifier (UID) is a numeric or alphanumeric string that is associated with a single entity within a given system.

• Single Sign-On (SSO)

  Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials (e.g., name and password) to access multiple applications.

• digital signature

  A digital signature is a mathematical technique used to validate the authenticity and integrity of a message, software or digital document.

Highlights

• How to detect and defend against a TCP port 445 exploit and attacks
• Latest news from the Black Hat 2019 conference
• 'Dupe' there it is: SAML authentication bypass threatens Microsoft

More Identity and access management Topics

• Active Directory security
• Biometric technology
• Password management and policy
• PKI and digital certificates
• Privileged access management
• Single-sign on (SSO) and federated identity
• Two-factor and multifactor authentication strategies
• Web authentication and access control

Network security

Recent Definitions

• IPv6 address

  An IPv6 address is a 128-bit alphanumeric string that identifies an endpoint device in the Internet Protocol Version 6 (IPv6) addressing scheme. The new IP address format was created to enable the trillions of new IP addresses required to connect not only an ever-greater number of computing devices but also the rapidly expanding numbers of items with embedded computers in them.

• Trojan horse (computing)

  In computing, a Trojan horse is a program downloaded and installed on a computer that appears harmless, but is, in fact, malicious.

• incident response team

  An incident response team is a group of IT professionals in charge of preparing for and reacting to any type of organizational emergency.

Highlights

• Designing IoT security: Experts warn against cutting corners
• Gigamon launches platform to improve application visibility
• Trustwave security platform provides visibility, control

More Network security Topics

• DDoS attack detection and prevention
• Endpoint protection and client security
• IoT security issues
• IPv6 security and network protocols security
• Network Access Control technologies
• Network device security: Appliances, firewalls and switches
• Secure remote access
• Software-defined security best practices
• VPN security

Security training and jobs

The information security careers, training and certification resource center provides the latest news, expert advice and learning tools to help you make informed career choices, learn about CISSP, SANS and CISA certification, and the training required for information security jobs.

Recent Definitions

• Certified Information Systems Auditor (CISA)

  Certified Information Systems Auditor (CISA) is a certification issued by ISACA to people in charge of ensuring that an organization's IT and business systems are monitored, managed and protected; the certification is presented after completion of a comprehensive testing and application process.

• Computer Emergency Response Team (CERT)

  A Computer Emergency Response Team (CERT) is a group of information security experts responsible for the protection against, detection of and response to an organization’s cybersecurity incidents.

• Security Operations Center (SOC)

  A security operations center (SOC) is a command center facility for a team of IT professionals with expertise in information security that is responsible for monitoring, analyzing and protecting an organization from cyber attacks.

Highlights

• What it takes to be a DevSecOps engineer
• Varied options to solving the cybersecurity skills shortage
• How to navigate the often challenging CISO career path

More Security training and jobs Topics

• CISSP certification
• Security industry certifications

Infosec programs

CISOs and information security programs are vital to protecting enterprises against today's cyber threats. In this resource centers, get the latest news and advice about CISO practices, infosec prrogram management and more.

Recent Definitions

• Cybersecurity and Infrastructure Security Agency (CISA)

  Cybersecurity and Infrastructure Security Agency (CISA) is a division of the Department of Homeland Security (DHS) that is tasked with the defense of the infrastructure of the internet and the charge to design measures to improve the infrastructure’s resilience and security.

• cybersecurity

  Cybersecurity is the protection of internet-connected systems, including hardware, software and data, from cyberattacks.

• Computer Emergency Response Team (CERT)

  A Computer Emergency Response Team (CERT) is a group of information security experts responsible for the protection against, detection of and response to an organization’s cybersecurity incidents.

Highlights

• FBI says $26B lost to business email compromise over last 3 years
• DerbyCon session tackles cyber attribution, false flag attacks
• Chronicle: Crimeware group takedowns 'increasingly ineffectual'

More Infosec programs Topics

• Government information security management
• Information security incident response
• Information security laws, investigations and ethics
• Information security policies, procedures and guidelines
• Security automation systems, tools and tactics
• Security industry market trends, predictions and forecasts
• Security vendor mergers and acquisitions

Risk management strategies

A risk management program is a key component for enterprise security. This section offers insight on security risk management frameworks and strategies as well as best practices on conducting effective risk assessments, vulnerability assessments, penetration tests and more.

Recent Definitions

• Certified Information Systems Auditor (CISA)

  Certified Information Systems Auditor (CISA) is a certification issued by ISACA to people in charge of ensuring that an organization's IT and business systems are monitored, managed and protected; the certification is presented after completion of a comprehensive testing and application process.

• cybersecurity

  Cybersecurity is the protection of internet-connected systems, including hardware, software and data, from cyberattacks.

• phishing

  Phishing is a form of fraud in which an attacker masquerades as a reputable entity or person in email or other communication channels.

Highlights

• DerbyCon panel discusses IT mistakes that need to stop
• What are the benefits and challenges of cloud penetration testing?
• DerbyCon session tackles cyber attribution, false flag attacks

More Risk management strategies Topics

• Penetration testing, ethical hacking and vulnerability assessments
• Risk assessments, metrics and frameworks
• Security awareness training and insider threats

Information security threats

Mitigating information security threats is an ongoing battle. Here you'll find information on the latest malware and cyberattacks facing enterprises, from viruses and Trojans to social engineering techniques, as well as news, expert advice and learning tools to address these threats.

Recent Definitions

• computer worm

  A computer worm is a type of malicious software program whose primary function is to infect other computers while remaining active on infected systems.

• unexplained wealth order (UWO)

  An unexplained wealth order (UWO) is an investigative tool used by law enforcement that can be used with other civil powers to identify and retrieve the proceeds of criminal activities from the recipients.

• Trojan horse (computing)

  In computing, a Trojan horse is a program downloaded and installed on a computer that appears harmless, but is, in fact, malicious.

Highlights

• FBI says $26B lost to business email compromise over last 3 years
• How can companies prevent and respond to island hopping attacks?
• Chronicle: Crimeware group takedowns 'increasingly ineffectual'

More Information security threats Topics

• Cyberespionage and nation-state cyberattacks
• Email and messaging threats
• Emerging cyberattacks and threats
• Hacker tools and techniques: Underground hacking sites
• Malware, virus, Trojan and spyware protection and removal

Network threat detection

Get news, tips and expert advice on network threat detection. This resource will cover the latest trends and technology around network threats and threat detection systems and services. Learn how to uncover, analyze and address network vulnerabilities to mitigate the risk of cyberattacks.

Recent Definitions

• messaging security

  Messaging security is a subcategory of unified threat management (UTM) focused on securing and protecting an organization’s communication infrastructure.

• Computer Security Incident Response Team (CSIRT)

  A Computer Security Incident Response Team (CSIRT) is a group of IT professionals that provides an organization with services and support surrounding the prevention, management and coordination of potential cybersecurity-related emergencies.

• endpoint detection and response (EDR)

  Endpoint detection and response (EDR) is a category of tools and technology used for protecting computer hardware devices–called endpoints—from potential threats.

Highlights

• Awake Security adds adversarial model to security platform
• Browse the best email security products for your enterprise
• Puppet launches its first vulnerability remediation product

More Network threat detection Topics

• Network intrusion detection and prevention (IDS-IPS)
• Real-time network monitoring and forensics
• SIEM, log management and big data security analytics
• Threat intelligence sharing and services

Platform security

Get the latest news, advice and best practices for platform security. Here you'll find information on vulnerability and threat management, operating system security fundamentals, virtualization security basics, Web security and more.

Recent Definitions

• WebAuthn API

  The Web Authentication API (WebAuthn API) is a credential management application program interface (API) that lets web applications authenticate users without storing their passwords on servers.

• Windows Defender Advanced Threat Protection (ATP)

  Windows Defender Advanced Threat Protection (ATP) is a Microsoft security solution that is designed to help enterprise-class organizations detect and respond to security threats.

• Windows Defender Exploit Guard

  Windows Defender Exploit Guard (EG) is an anti-malware software developed by Microsoft that provides intrusion protection for users with the Windows 10 operating system (OS).

Highlights

• USBAnywhere vulnerabilities put Supermicro servers at risk
• Carbon Black acquisition bolsters VMware's security play
• How to detect and defend against a TCP port 445 exploit and attacks

More Platform security Topics

• Alternative operating system security
• Microsoft Windows security
• Virtualization security issues and threats

Security compliance

Get tips from the experts on security audits, compliance and standards. Advice is offered on data privacy and theft, audit planning and management, how to work with auditors, and compliance with standards, regulations and guidelines such as PCI DSS, GLBA, HIPPA, SOX, FISMA, ISO 17799 and COBIT.

Recent Definitions

• Single Sign-On (SSO)

  Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials (e.g., name and password) to access multiple applications.

• double blind test

  Double blind test is an experiment where both the subject and observer are unaware that the exercise in practice is a test. Double blind testing is referred to as the gold standard of testing.

• checksum

  A checksum is a value that represents the number of bits in a transmission message and is used by IT professionals to detect high-level errors within data transmissions.

Highlights

• How to identify and evaluate cybersecurity frameworks
• Why is third-party risk management essential to cybersecurity?
• For board of directors, cybersecurity literacy is essential

More Security compliance Topics

• Data privacy issues and compliance
• HIPAA
• IT security audits and audit frameworks
• PCI Data Security Standard

Software security

Get advice on software application security. Here you'll find information on software vulnerability and threat management, application attacks, software security tools, application firewalls, software patching and more.

Recent Definitions

• dynamic application security testing (DAST)

  A dynamic application security test (DAST) is a program used by developers to analyze a web application (web app), while in runtime, and identify any security vulnerabilities or weaknesses.

• cyberterrorism

  According to the U.S. Federal Bureau of Investigation, cyberterrorism is any 'premeditated, politically motivated attack against information, computer systems, computer programs, and data which results in violence against non-combatant targets by sub-national groups or clandestine agents.'

• zero-day (computer)

  A zero-day vulnerability, also known as a computer zero day, is a flaw in software, hardware or firmware that is unknown to the party or parties responsible for patching or otherwise fixing the flaw.

Highlights

• What it takes to be a DevSecOps engineer
• Gigamon launches platform to improve application visibility
• How does AttackSurfaceMapper help with attack surface mapping?

More Software security Topics

• Application attacks (buffer overflows, cross-site scripting)
• Application firewall security
• Database security
• Microsoft Patch Tuesday and patch management
• Open source security tools and software
• Productivity apps and messaging security
• Secure SaaS: Cloud application security
• Secure software development
• Social media security risks

Web security tools

Get news and expert advice on Web security tools and threats. Find out about current threats against Web applications, web security tools, SSL and TLS encryption, Web services, SOA, web access control, web server security, URL filtering, content filtering and browser security.

Recent Definitions

• Web application (Web app)

  A Web application (Web app) is an application program that is stored on a remote server and delivered over the Internet through a browser interface.

• digital signature

  A digital signature is a mathematical technique used to validate the authenticity and integrity of a message, software or digital document.

• browser isolation

  Browser isolation is a cybersecurity model for web browsing that can be used to physically separate an internet user’s browsing activity from their local machine, network and infrastructure.

Highlights

• The must-have skills for cybersecurity aren't what you think
• E-commerce platforms used for domain spoofing against Best Buy
• Building the best incident response framework for your enterprise

More Web security tools Topics

• Web application and API security best practices
• Web browser security
• Web server threats and application attacks

Wireless and mobile security

In this guide, get advice on tools, software and tactics for wireless network security and wireless mobile device security. Learn how to build and maintain a secure wireless LAN, how to protect mobile devices, and how to successfully configure, implement and manage a solid wireless network.

Recent Definitions

• GPS jamming

  GPS jamming is the process of using a frequency transmitting device to block or interfere with radio communications.

• man-in-the-disk (MITD) attack

  Man-in-the-disk (MITD) is an attack vector that allows an intruder to intercept and potentially alter data as it moves between Android external storage and an installed app.

• secure container

  A secure container is a lightweight, executable software package that has been isolated from other software or processes running on the same virtual or physical host.

Highlights

• Insecure Android provisioning could lead to phishing attacks
• Defending against the most common wireless network attacks
• KNOB attack puts all Bluetooth devices at risk

More Wireless and mobile security Topics

• BYOD and mobile device security best practices
• Mobile application security best practices
• Mobile security threats and prevention
• Wireless network security