Polls
Loading ...Books
Blog Search
-
Recent Posts
Recent Comments
- Dragan on Security on Second Round Candidates of the Cryptographic Hash Algorithm Competition Selected
- Tweets that mention Poll: Do You Use Any Security Precautions On Your Mobile Phone? | Dragan on Security -- Topsy.com on Poll: Do You Use Any Security Precautions On Your Mobile Phone?
- Tweets that mention New Version of CrypTool | Dragan on Security -- Topsy.com on New Version of CrypTool
- Dragan on Security on CrypTool
- Tweets that mention What’s Wrong With Secure Software Development?Dragan on Security | Dragan on Security -- Topsy.com on What’s Wrong With Secure Software Development?
Featured
Categories
- Books, Magazines and Journals (28)
- Conferences, Events (25)
- Cryptography (41)
- Database Security (6)
- Education and Training (11)
- Fun (15)
- General (45)
- Hardware Security (9)
- Internet Security (42)
- Intrusion Detection / Prevention Systems (10)
- Malicious Software (23)
- Mobile / Cellular / Bluetooth (15)
- Operating Systems and Application Security (58)
- Penetration Testing (1)
- Secure Programming (13)
- Security (195)
- Compliance (1)
- Polls (17)
- Privacy (32)
- Review (3)
- Security Research (39)
- Software Security (13)
- Threats, Vulnerabilities, Attacks (19)
- Tools and Utilities (14)
- Uncategorized (1)
- VoIP Security (4)
- Wireless Security (19)
Archives
- January 2012 (1)
- October 2011 (3)
- September 2011 (1)
- February 2011 (1)
- January 2011 (1)
- September 2010 (1)
- August 2010 (2)
- July 2010 (1)
- June 2010 (4)
- May 2010 (2)
- April 2010 (1)
- January 2010 (1)
- December 2009 (2)
- October 2009 (1)
- September 2009 (1)
- July 2009 (2)
- June 2009 (2)
- May 2009 (1)
- April 2009 (3)
- March 2009 (1)
- January 2009 (5)
- December 2008 (2)
- November 2008 (1)
- October 2008 (4)
- July 2008 (3)
- May 2008 (4)
- April 2008 (3)
- March 2008 (9)
- February 2008 (4)
- January 2008 (7)
- December 2007 (8)
- November 2007 (9)
- October 2007 (18)
- September 2007 (12)
- August 2007 (17)
- July 2007 (5)
- June 2007 (16)
- May 2007 (21)
- April 2007 (12)
- March 2007 (4)
- February 2007 (12)
- January 2007 (17)
- December 2006 (23)
- November 2006 (62)
- October 2006 (23)
- September 2006 (7)
- May 2006 (2)
- March 2006 (2)
- February 2006 (1)
- January 2006 (6)
- December 2005 (3)
- November 2005 (14)
- October 2005 (26)
- September 2005 (14)
- August 2005 (10)
Category Archives: Software Security
Wireless Intrusion Detection and Prevention Systems
After quite some time of silence regarding my work on Wireless Intrusion Detection and Prevention Systems (WIDS / WIPS), I’m considering continuing that work. In past I have done research, published couple of papers on this topic at conferences and journals and also created concept, basic architecture and design of system and products. This possible “reactivating” of work is particularly pushed by recent interest of companies, organizations and institutions including commercial, government etc, and requirements of many production environments.
This is just brief description. If you are interested in more details or want to consider contribution or investment into this development send me e-mail. Continue reading
Posted in Intrusion Detection / Prevention Systems, Mobile / Cellular / Bluetooth, Security Research, Software Security, Tools and Utilities, Wireless Security
Tagged ACSAC, Agent, AI, artificial intelligence, Console, fuzzy logic, investment, Management, neural networks, Reporting, Sensor, Server, Tools, WIDS, WIPS, Wireless Intrusion Detection Systems, Wireless Intrusion Prevention Systems
1 Comment
Tricked by Wrong PDFCreator Publisher
You probably need to print your files to PDF format sometimes. You can use Adobe Acrobat for this purpose, but it costs some significant amount of money. If your requirements are not to strong, you can use free open source version named PDFCreator.
PDFCreator is a free tool to create PDF files from nearly any Windows application. Real PDFCreator Web site is: http://www.pdfforge.org/products/pdfcreator. I have been using it for quite some time and it is really good tool. Easy to use and pretty fast, it satisfies most of my needs regarding creating PDF files i.e. printing to PDF from various programs which I use.
But there are some impostors on the Internet. So, be careful, very careful when downloading open source software, as many impostors use well known names and its variations to trick people and then to take many.
Continue reading
Security Quiz: Test Your Security IQ
Michael Howard and Bryan Sullivan wrote a couple of articles for this month’s MSDN Magazine. One of them is Test Your Security IQ. It’s chance for you to take the challenge. Continue reading
Posted in Security, Software Security
Tagged Bryan Sullivan, IQ, Michael Howard, Security Quiz
Leave a comment
Edgios or will new Google come from Serbia!?
Edgios is a large-scale distributed search ‘cloud’ that offers higher-quality search results. Users participate in the cloud by downloading the Edgios personal search software, and connecting that software to the net. Continue reading
Posted in General, Internet Security, Privacy, Security, Security Research, Software Security
Tagged Belgrade, Borislav Agapiev, cloud, Edgios, Google, large-scale distributed search, search, Serbia
3 Comments
MD5 Collisions
It seems that bad days came for MD5 and those who based hashes on it. It is possible to create two executable programs with different functionalities with identical MD5 hash. Therefore, it is possible to create malicious executable which has … Continue reading
Posted in Cryptography, Security Research, Software Security, Threats, Vulnerabilities, Attacks
Tagged attach, collisions, Hash, Hongbo Yu, MD5, tool, Xiaoyun Wang
Leave a comment
Michael Howard from Microsoft Analyzes Recent Symantec and IBM Vulnerabilities
One of main persons behind Microsoft SDL, Michael Howard analyzes recent Symantec and IBM Vulnerabilities in his post on MSDN SDL blog. Michael says: The vulnerabilities are not in Symantec code, yet Symantec customers are still open to attack. The … Continue reading
Posted in Software Security, Threats, Vulnerabilities, Attacks
Tagged IBM, Michael Howard, Microsoft, SDL, Symantec, Vulnerabilitites
Leave a comment
Top 100 Network Security Tools
Insecure.org has Top 100 Network Security Tools list. Author says: Anyone in the security field would be well advised to go over the list and investigate tools they are unfamiliar with. I discovered several powerful new tools this way. I also … Continue reading
Posted in Software Security, Tools and Utilities
Tagged insecure.org, network security tools, top 100
Leave a comment
Ophcrack – Rainbow Tables Based Password Cracker
If you think your passwords are strong enough, think twice. They are probably not. Ophcrack is a Windows password cracker based on rainbow tables. It is a very efficient implementation of rainbow tables done by the inventors of the method. It comes with … Continue reading
Application Verifier
Application Verifier is nice tool, designed in Microsoft, specifically to detect and help debug memory corruptions and critical security vulnerabilities. It makes it easier to create reliable applications by monitoring an application’s interaction with the Windows operating system, profiling its … Continue reading
Posted in Software Security, Tools and Utilities
Leave a comment
The Ethics of Perfection
Interesting blog post from Steve Lipner: The Security Development Lifecycle : The Ethics of Perfection. He says in conclusion: What does all this have to do with ethics? Well, I think that given the choice between shipping perfectly secure software (whatever … Continue reading
Posted in Security Research, Software Security
Leave a comment