January 1999
Cover Story: Bitter Suite Security
Product suites represent an important evolutionary step in enterprise security. But don't let the hype distract you from the need for across- the-board security controls. BY MACDONNELL ULSCH AND JOSEPH JUDGE
MERGER MANIA: Survival of the Fittest
Thanks to a wave of acquisitions and mergers, IS buyers can now select from an array of integrated security suites. So why are so many still opting for fragmented, best-of-breed solutions? BY JIM HURLEY
The 1998 Crypto Year-in-Review
AES, Deep Crack, power analysis,
key escrow…How will ’98’s major events affect ’99? Only time will tell. BY BRUCE SCHNEIER
|
February 1999
Feature: Designated Holist
A self-described "eclectical engineer," Peter Neumann brings balance to a field often characterized by chaos.
BY ANDY BRINEY
Feature: INFOSECURITY: A View From the Frontlines
In 1999’s first Issue Roundtable, senior security consultants from three Big 5 firms discuss the state of infosecurity in the modern business enterprise: trends, priorities, risks, technologies and more. With more than 50 combined years in the biz, these guys have seen it all. MODERATED BY ANDY BRINEY
|
March 1999
Cover Story: The 8 Hurdles to VPN Deployment
VPNs can save you up to 60% over private networks and corporate modem banks. But be prepared to deal with these up-front issues first. BY CHRISTOPHER M. KING
Feature: Tools of the Trade
So you want to defend your enterprise against attack? Make sure you understand these popular hacker tools first.
Scrutiny = Security: Q & A with Eric Raymond
Open-source guru Eric Raymond explains why you should use software developed by a community of peers.
|
April 1999
Cover Story: Who's Stealing Your Information?
In today's enterprise, the answer is everyone. Here's what (and who) to watch out for, and how you can better protect your company's jewels. BY DOROTHY E. DENNING
Roundtable: Bridging the Gap
The meteoric rise of e-commerce gives infosecurity practitioners a rare opportunity to pull a chair up to the boardroom table. But what do you do once you're there? MODERATED BY ANDY BRINEY
|
May 1999
Cover Story: Firewalls: Are We Asking Too Much?
Allowing a new service through a firewall is easy. Doing it while maintaining the same high level of security isn't. BY FREDERICK M. AVOLIO
Feature: Firewall Futures
Four security analysts discuss the firewall market—past, present and future. BY MARGOT SUYDAM
Profile: Spaf Gets CERIAS
Eugene Spafford sees security as serious business...nicknames, aphorisms and practical jokes notwithstanding. BY ANDY BRINEY
Feature: Now What?
How one systems manager learned all about incidence response—the hard way. BY PHILIP JAN ROTHSTEIN
|
June 1999
Cover Story: PKI: The Myth, the Magic and the Reality
Magic bullet? No. Killer app? Not really. But that doesn't mean a skillfully deployed public-key infrastructure can't dramatically improve your ability to control online access and mitigate security risks. BY CHARLES BREED
Also in this article:
Snapping In PKI
X.509 vs. PGP Certs
You Can't Buy PKI
Product Roundup
Roundtable Discussion
|
July 1999
Cover Story: Got Security?
The rapid growth of e-business has placed new demands on infosecurity. The 1999 Industry Survey shows that in many ways, we’re not equal to the challenge. BY ANDY BRINEY
Also in this article:
Enough Is (Never) Enough
Security budgets continue to rise rapidly, but so does the perception that there’s not enough funding for security needs. So what’s new?
Under Attack & Underprepared
Breaches are inevitable—literally. And security policies are shown to be largely ineffective. Short of surrendering, what should you do?
The Bucks Stop Here
Trends in staffing and support, as well as the low-down on the industry’s most lucrative places to work.
FEATURE: SECURE REMOTE ACCESS
Remote Security: Sink or Swim?
It’s hard to decide which of the various remote access solutions best suits your enterprise’s needs. This three-part article helps you sort out some of the options. BY ANDY BRINEY
More Than Just Token Security
A comparison of SecurID and DigiPass authentication tokens.
BY MICHAEL NADEAU
Remote? Yes. Control? Depends
The pros and cons of Symantec’s latest version of pcAnywhere.
BY EDMUND X. DeJESUS
A Suite Deal for Small Businesses
Internet Dynamics’ all-in-one Conclave solves security headaches for managers with limited time, resources and budget.
BY MARGOT SUYDAM
|
August 1999
Cover Story: Policies: The Path to Less Pain & More Gain
Designing an infosecurity policy is one thing. Implementing it is another. Here’s how to overcome 10 common obstacles. BY CHARLES CRESSON WOOD
Profile: Parker's Plan
If you're a computer criminal, Donn Parker has your number. Just ask him. BY ANDY BRINEY
Feature: Security & the Source
Infosec vendors are bucking a major trend in the computer software industry. How long will their customers tolerate it? BY DAVID C. NIEMI
|
September 1999
Cover Story: Life After IDS
You spent months evaluating, testing, purchasing and deploying your intrusion detection system. Now the fun really begins. BY SONDRA SCHNEIDER, ERIK SCHETINA AND DONALD STAHL
Also in this report:
Application-Based IDSs
Fudging on Fidnet
Product Roundup
IDS Book Reviews
First Person: "How I Chose an IDS"
Feature: Automated Crime
Have you heard about the new tool that selects its victims automatically, steals their assets and erases all evidence before they can blink an icon? Get ready: It’s on the way if it’s not already here. BY DONN PARKER
Q & A: Justice is Served
Scott Charney, the U.S. Justice Department’s head cybercrime fighter knows how to defend the system.
INTERVIEWED BY MARGOT SUYDAM
Cryptorhythms: Int’l Cryptography
Two new studies prove that cryptography is alive and well outside U.S. borders, and that it’s only a matter of time before export restrictions make U.S. crypto irrelevant. BY BRUCE SCHNEIER
Word in Edgewise: Catch My Drift?
Can you define "digital signature" in non-technical terms? The future of e-commerce law may depend on it. BY GARY C. KESSLER
|
October 1999
E-Commerce Law: Balancing Acts
Every day infosecurity practitioners work with technologies that are poorly understood by our legal system. As e-commerce raises the stakes of enterprise liability and risk, that places us in a prime position to serve as Guinea pigs should something go wrong.
BY JOSEPH M. SAUL
Roundtable: Law and (Dis)order
Four legal experts shed light on the often-confusing world of electronic law, liability, privacy, encryption policy and more.
MODERATED BY ANDY BRINEY
Security Market: SSL Crunch Time
SSL-related performance delays can result in lost e-commerce revenues. Here's how to make SSL more efficient without undermining your Web site's security. BY ALISTAIR A. CROLL
Profile: Murray's Laws
You've heard of Murphy's Law ("Anything that can go wrong will go wrong") and Moore's Law ("Processor power will double every 18 months"). But how much do you know about Murray's Laws? BY ANDY BRINEY
Professional Certification: Can You Top the Bar?
Professional certification is a symbol of status and credibility in any industry. How can the Certified Information Systems Security Professional (CISSP) credential help your career? BY MOLLIE KREHNKE AND DAVID KREHNKE
Also in this article:
CISSP Sample Exam
Answer Key to CISSP Exam
Feature: Automated Security
Defending against automated crime will require a new security strategy based on "controlled unpredictability." Part 2 of 2.
BY DONN PARKER
|
November 1999
|
December 1999
Cover Story: 1999 Infosecurity Year-in-Review
From Melissa to Explore.Zip, from Hotmail to TWINKLE, from BubbleBoy to BO2K, from InfraGard to Fidnet,
the events of 1999 put information security in the public eye and on the corporate
roadmap like never before.
BY M.E. KABAY
Cryptorhythms: The 1999 Crypto Year-in-Review
Politics dominated the encryption arena in the U.S. and abroad, highlighting the ongoing battle between privacy and law enforcement needs.
BY BRUCE SCHNEIER
Feature: 1999 Best Security Books
The year’s best were all somewhat offbeat, veering away from the tried-and-true "how-to" formula of most infosec books.
BY ROBERT M. SLADE
|
