News in the Category "Type"
Page 42 of 97
Video: Schneier: Incident Response Management Key to Surviving a Data Breach
SAN FRANCISCO—Between Target, Home Depot, Sony Pictures and many others, 2014 was undeniably the year of the data breach, and companies are finally realizing the likelihood that they could be next.
“Last year was being called the ‘year of the breach,’” said Bruce Schneier, CTO of Resilient Systems, formerly Co3 Systems. “Now, you and I know every year [has] been the year of the breach. But last year there were a bunch of really high-profile breaches where the companies involved did a terrible job of responding, that they were actually in chaos and it looked that way.”…
Book Review: Data and Goliath (Bruce Schneier)
I finally got around to finishing Bruce Schneier’s latest bestseller: Data and Goliath. I’ve read a few of Bruce’s books over the years (and own most of the rest, waiting patiently to be read). I’ve watched Bruce on many TV news segments, lectures, interviews, and web videos. I follow his blog and Twitter posts. I’ve even had the pleasure of emailing him from time to time. Some day I’d love to meet the guy. So… what I’m trying to say here is: fair warning, I’m a bit of a Bruce Schneier fan boy.
However, I feel this is completely justified. I tend to have the most respect for the even-keeled, professorial types—the ones who are passionate about what they do and highly knowledgeable about their field, but at the end of the day are most concerned with getting it right and avoiding hyperbole. That’s a small camp of people, but Bruce is definitely in it…
Video: Cloud Computing Trade-Offs
“As a business or as an individual you have to make a choice. Should I do this thing—whatever it is—on my computer and on my network or on a cloud computer on a cloud network,” asked Bruce Schneier (@schneierblog), CTO of Resilient Systems, Inc., in our conversation at the 2015 RSA Conference in San Francisco.
Whatever you choose, you’re going to be making a trade-off. Schneier recommends you first look at who your adversaries are.
“If your adversaries are a cybercriminal, I bet Google can do a better job at securing your stuff than you can. If your adversary is the U.S. government, Google will respond to court orders and not tell you about it, so maybe you’re better keeping it. It’s going to depend on what you’re worrying about,” said Schneier, who runs his personal email on his own computers, not so much for security reasons, but for control. He doesn’t want Google looking at his email or sending him advertising…
RSAC—Schneier Details Ways to Survive Catastrophic Attack
Catastrophic issues in security can occur, but there are ways to recover.
Speaking at RSA Conference in San Francisco, Bruce Schneier, CTO of Resilient Systems, highlighted the Sony Pictures attack as being an interesting case as it brings catastrophic risk uses to the fore, and not catastrophic as in a life ending sense, but in company terms.
He highlighted seven ways in which a catastrophic incident could be dealt with. Firstly he recommended keeping it internal to "incapsulate the catastrophic risk", secondly consider that attackers on two axes of skills and focus and with someone who is low skilled but has a high focus would use a basic APT, but in the case of Sony this was low skills and low targets. "Why this matters for security is the difference between absolute and low security; it doesnt matter how good security is, be more secure than the other guy and in a high skill high focus they want you," he said…
What Bruce Schneier Learned from the Sony Breach
After spending a lot of time thinking about the massive breach of Sony, security luminary Bruce Schneier came to a scary – but not really surprising – conclusion.
“The lesson is that we are all vulnerable. North Korea could have done it to anyone,” said Scheier during a packed session at the RSA conference in San Francisco.
While the IT security industry knows how to deal with high volume, low-focus attacks, Schneier said, security professionals have trouble handling highly skilled and focused attackers, commonly referred to as advanced persistent threats (APTs)…
Audio: What Does It Take To Feel Secure?
Listen to the Audio on NPR.org
Computer security expert Bruce Schneier says there’s a big difference between feeling secure and actually being secure. He explains why we worry about unlikely dangers while ignoring more probable risks.
Transcript
GUY RAZ, HOST:
It’s the TED Radio Hour from NPR. I’m Guy Raz. And on the show today, we’re exploring ideas about Maslow’s hierarchy of human needs, and ranked at number two, security – the second step on the pyramid.
BRUCE SCHNEIER: There’s no other place for it to come. Security is basic. Without security, worrying about anything else doesn’t matter…
What Do You Use to Get Stuff Done?
Who are you, and what do you do?
I’m Bruce Schneier, security technologist. Basically, I think and work in the intersection of security, technology, and people. Most people think of me as a cryptographer, but these days I do more policy than anything else: security policy, privacy policy, the NSA and surveillance. I suppose that’s the natural evolution of things.
Right now I am thinking a lot about catastrophic risk. Technology empowers, for both good and bad. A broad history of "attack" technologies shows trends of empowerment, as individuals wield ever more destructive power. The natural endgame a nuclear bomb in everybody’s back pocket, or a bioprinter that can drop a species. And then what? Is society even possible when the most extreme individual can kill everyone else? Honestly, I don’t know…
Audio: The Hidden Struggles to Control Your Data
Listen to the Audio on ABC.net.au
Just how much of your life is being watched and tracked? Who has access to all this information and what are they doing with it?
Bruce Schneier, fellow at Harvard Law School, author of Data and Goliath, points out the danger is not only from corporations and governments, but also cybercriminals, when these institutions lose your details.
Schneier on “Really Bad” IoT Security: ‘It’s Going to Come Crashing Down’
Security expert Bruce Schneier has looked at and written about difficulties the Internet of Things presents – such as the fact that the "things" are by and large insecure and enable unwanted surveillance—and concludes that it’s a problem that’s going to get worse before it gets better.
After a recent briefing with him at Resilient Systems headquarters in Cambridge, Mass., where he is CTO, he answered a few questions about the IoT and what corporate security executives ought to be doing about it right now. Here’s a transcript of the exchange…
Video: Schneier: Turn Data Over to Those With Greatest Data Security Knowledge
Erin Ade sits down with Bruce Schneier – security expert, author, and fellow at the Berkman Center for Internet and Society at Harvard Law School. Bruce tells us that a cloud service is safer than running your own data center when you are entrusting your data to a provider who understands security better than you do. And for most people this is definitely the case. Bruce also talks to Erin about state actors weakening security standards and about the security of various open source encryption options. Schneier also weighs in on the security risks and benefits of using the Apple mobile platform…
Sidebar photo of Bruce Schneier by Joe MacInnis.