http://searchmobilecomputing.com/tip/1,289483,sid40_gci1195031,00.html
3G wireless: The long and winding road
SearchMobileComputing, June 20, 2006

Paul McCartney penned "The Long and Winding Road" a decade before first-generation AMPS cellular was launched, but this lyric perfectly embodies the complex history behind today's 3G wireless. In this Mobile Innovator column, Lisa Phifer sorts out the cellular alphabet soup to better understand where 3G came from.

http://searchmobilecomputing.com/tip/0,289483,sid40_gci1203689,00.html
Going 3G: Can you hear me now?
SearchMobileComputing, July 24, 2006

In this month's Mobile Innovator column, Lisa Phifer looks at carriers that offer high-speed wireless broadband services like HSDPA and 1xEV-DO, and what to consider when making your move to 3G.

Attacks and Countermeasures

http://www.enisa.europa.eu/pages/02_02.htm
http://www.enisa.europa.eu/doc/pdf/publications/enisa_quarterly_06_06.pdf
Worrisome Threat of DNS DDoS Attacks
ENISA Quarterly, 2Q06

Between December 2005 and March 2006, some DNS (Domain Name System) root and Top Level Domain (TLD) name server operators were subjected to numerous denial of service (DoS) attacks. Read Dave Piscitello's article about these attacks, published by ENISA.

http://searchnetworking.com/tip/1,289483,sid7_gci1192427,00.html
Five steps to stamp out unsafe Wi-Fi use
SearchNetworking, June 7, 2006

In this tip, Lisa Phifer maps the top five myths of wireless security to five steps that network administrators can take to promote safer Wi-Fi usage.

Security Appliances

http://searchnetworking.com/general/0,295582,sid7_gci1194071,00.html
Security Spotlight: Wi-Fi firewall appliances
SearchNetworking, June 16, 2006

Wireless intrusion prevention systems are servers that monitor Wi-Fi traffic, blocking unauthorized 802.11 usage and attacks while still in the air. In the first installment of our Security Spotlight series, Lisa Phifer discusses the benefits of "Wi-Fi firewall" appliances and what to consider when selecting one.

http://searchnetworking.com/generic/0,295582,sid7_gci1202444,00.html
Security Spotlight: Identity Management appliances
SearchNetworking, July 21, 2006

In this month's security appliances column, Lisa Phifer introduces identity management appliances: turn-key devices that help to reduce user account administration and password reset overhead while strengthening network security and improving productivity.

Mobile Security

http://searchmobilecomputing.com/tip/1,289483,sid40_gci1193636,00.html
Trimming mobile telecomm costs with Skype
SearchMobileComputing, June 14, 2006

Many mobile workers use Internet VoIP services like Skype to avoid racking up long distance bills while traveling. In this Mobile Innovator column, Lisa Phifer ponders whether enterprises should allow or embrace Skype use by mobile workers.

http://www.isp-planet.com/technology/2006/mobile_security_1a.html
http://www.isp-planet.com/technology/2006/mobile_security_2a.html
http://www.isp-planet.com/technology/2006/mobile_security_3a.html
Mobile Security: Where risk meets opportunity
ISP-Planet, July 14, 21, and 28, 2006

As customers adopt the latest mobile devices, ISPs will need to know how to protect them. In this three part series, Lisa Phifer provides an overview of mobile security options, mobile security threats and defenses, and value-added security services that ISPs may wish to offer to their customers.

WatchGuard LiveSecurity

http://www.corecom.com/external/livesecurity/webproxy.htm
Basic and Advanced HTTP Proxy Uses
WatchGuard LiveSecurity, 24 May 2006

Application proxies, especially HTTP proxies, are underutilized and not well understood. In this article, Dave Piscitello goes back to the basics, examining what proxies are, what they do, and how to use your firewall's HTTP Proxy to counter a broad range of threats.

http://www.corecom.com/external/livesecurity/mixnmatch.htm
Mix-n-Match VPNs: IPsec and SSL
WatchGuard LiveSecurity, 28 Apr 2006

Would combining IPsec and SSL better meet your business needs? In this LiveSecurity column, Lisa Phifer explains how to match your VPN requirements to what each solution has to offer.

Virtual Private Networks

http://go.techtarget.com/r/362514/242936
Guarding the Gate: VPN Deployment Strategies - Webcast
InfoSec Magazine, July 13, 2006

In this webcast, Lisa Phifer discusses strategies that can help your organization satisfy VPN client-side requirements, support target applications and policies, integrate VPN authentication, apply endpoint security and admission controls, and overcome common deployment barriers.

http://go.techtarget.com/r/362515/242936
The Road Ahead: Emerging VPN Trends - Podcast
InfoSec Magazine, July 13, 2006

This podcast by Lisa Phifer explores emerging techniques intended to reduce cost of operation, strengthen security and deliver secure access to additional users.

http://searchsecurity.com/tip/1,289483,sid14_gci1193857,00.html
Understanding IPsec identity and authentication options
SearchSecurity, July 17, 2006

A secure VPN starts with verifying the identity of those tunnel endpoints, but poor auth choices can cause interoperability issues or network compromise. Lisa Phifer explores common IPsec VPN identity and authentication options, and their security and deployment implications.

Dave Piscitello's Blog

http://hhi.corecom.com/arc20060501.htm#BlogID527
Book Review: How to Break Web Software
Dave's Blog, May 2006

Dave Piscitello reviews Mike Andrews's and James Whittaker's "good book with an unfortunate title". This book describes the lamentable state of web application development and associated security problems. The title suggests it's yet another hacking book, but Andrews and Whittaker offer much more than a dissertation by a lame-oh clever enough to take advantage of someone else's poorly written script.

http://hhi.corecom.com/arc20060501.htm#BlogID530
Multi-purpose Security Appliances: Do You Sacrifice Defense in Depth?
Dave's Blog, May 2006

A recent thread on the Firewall Wizards email list asks whether multi-purpose security appliances are a good or bad trend, and whether you sacrifice defense in depth by deploying multi-purpose security appliances. Dave Piscitello's post explains why you don't have to sacrifice DiD if you deploy such appliances *thoughtfully*.

http://hhi.corecom.com/arc20060601.htm#BlogID537
Why Legitimate Search Engines Should Hate PPC Landing Pages
Dave's Blog, June 2006

Following publication of two SSAC advisories explaining the issues registrants must consider when domain names come up for renewal, Dave Piscitello mulled over the problems pay-per-click (PPC) landing pages create for legitimate search engines and users. Find his opinions on search result manipulation in this blog item.

http://hhi.corecom.com/arc20060601.htm#BlogID533
Parallels Desktop for Mac
Dave's Blog, June 2006

While Dave Piscitello has returned to the Mac fold, he still has lots of applications that run under Windows XP. In this blog post, Dave reviews a beta offering of a virtual machine alternative to installing Apple's Boot Camp and running Windows XP natively. Hint: Dave purchased a registered copy...

http://hhi.corecom.com/arc20060701.htm#BlogID541
Checkmate - a new and interesting security blog!
Dave's Blog, July 2006

Dave Piscitello reviews a forensics and penetration testing security blog offered by colleague K. K. Moohkey and the folks at NII Security.

-----------------------------------------------------------------

Cornerstone is an electronic publication of Core Competence, Inc. If you do not wish to receive future issues, please reply to this message or send email to cornerstone@corecom.com with the word "remove" in the subject line or message body.

For additional information about Core Competence, visit our web site http://www.corecom.com
For past issues, visit our CornerStone page http://www.corecom.com/html/cornerstone.html
Send us a subscribe message to receive future issues of CornerStone.