Cornerstone Issue 73: October 5, 2006
Welcome to Issue 73 of Cornerstone, a subscription-only electronic
newsletter issued periodically by Core Competence.
Cornerstone reports on a wide range of networking topics and
activities involving Core Competence. A brief abstract explains
what you will find if you choose to visit each URL.
http://www.airtightnetworks.net/news/seminars.html
CoreCom's Lisa Phifer will be speaking at free half-day WLAN security
seminars to be hosted by AirTight Networks in Washington DC (10/10),
Atlanta (10/12), Dallas (10/17) and San Francisco (10/19). Join Lisa
and her colleagues as they discuss trends in the wireless security
industry and how new technology developments and Wi-Fi hacks impact
enterprise security. The program includes live demonstration of
attacks and how to mitigate them using AirTight's wireless intrusion
prevention (WIPS) solutions.
http://searchnetworking.com/tip/0,289483,sid7_gci1205318,00.html
Going wireless may avoid the expense of cabling and wired LAN drops,
but wireless networks still require effective technical support and
troubleshooting. Good troubleshooting tools and the systematic
approach outlined this new searchNetworking tip by Lisa Phifer can
help to isolate and resolve WLAN problems faster.
http://searchmobilecomputing.com/tip/0,289483,sid40_gci1210989,00.html
PDA VPN clients have been around for nearly as long as PDAs themselves.
Conventional VPNs may sound like a convenient way to secure mobile
communication, and for many stationary users, they are. But, as Lisa
Phifer describes in this Mobile Innovator column, there's a huge
difference between connecting a VPN user and keeping him connected
while he moves from one location to another.
http://searchmobilecomputing.com/tip/0,289483,sid40_gci1216934,00.html
In part two of this Mobile Innovator column, Lisa explores the
business problems addressed by Mobile VPNs and shares her own recent
"road test" experience with running NetMotion Mobility XE on her new
Motorola Q Smartphone.
http://www.networkworld.com/techinsider/2006/082806-guide-it-security-authentication.html
Many midsized companies won't consider identity management, because
they think it is too difficult to deploy, too expensive to implement,
and too complicated to administer. In Network World's "Six Worst
Security Mistakes," Dave Piscitello argues why it is time to make the
switch from passwords to two-factor authentication.
http://www.a10networks.com/resources/resource-reg/index-WP-IPtoID.php
Fast, accurate user identification is critical for incident response,
threat containment, troubleshooting, and compliance reporting. However,
manual IP-to-ID mapping can be tedious, time consuming, even impossible.
In this paper developed by Lisa Phifer for A10 Networks, learn how
A10's IP-to-ID service can help automate identity resolution and
eliminate information gaps to speed identity forensics.
http://searchnetworking.com/generic/0,295582,sid7_gci1215828,00.html
As network firewalls have grown more robust, persistent intruders have
adjusted their targets. Today's most dangerous attacks are aimed at
specific application protocols, coding flaws, and config errors. In
this Security Spotlight article, Lisa Phifer discusses how Application
Firewall appliances -- including Web Application Firewall appliances
-- can help to defeat these specialized application attacks.
http://www.securityskeptic.com/arc20060801.htm#BlogID548
Dave uses a real life inconvenience during a recent airport
screening to comment on policy definition and implementation.
http://www.securityskeptic.com/arc20060801.htm#BlogID543
Dave offers his perspective on the criteria that should be applied
when deciding whether to call a member of the security community
an expert, a professional, or a practitioner.
http://www.securityskeptic.com/arc20060901.htm#BlogID554
Dave looks at the domain traffic monetization or "pay per click"
industry, asks whether the business model for budget domainers
is a sustainable one, and explains why he's discontinuing
his Adsense adventure.
http://www.securityskeptic.com/arc20060901.htm#BlogID557
Dave takes exception to the decision of the 9th Circuit Court of
Appeals in California that it's OK for Customs Officials to seize
and search travelers' laptops upon entering the U.S. without a
search warrant or probable cause.
-----------------------------------------------------------------
Cornerstone is an electronic publication of Core Competence, Inc.
If you do not wish to receive future issues, please reply to this
message or send email to
cornerstone@corecom.com
with the word "remove" in the subject line or message body.
For additional information about Core Competence, visit our web site http://www.corecom.com
Wireless
WLAN Security Seminar: There's Wireless In The Air
AirTight Networks, October 10, 12, 17, 19, 2006
Troubleshooting wireless networks: A systematic approach
searchNetworking, July 28, 2006
VPN
Mobile VPN: Closing the gap
SearchMobileComputing, August 16, 2006
Mobile VPN Roadtest: NetMotion
SearchMobileComputing, September 21, 2006
IdM
Neglecting identity management
Network World, August 28, 2006
Fingering Culprits Faster and Better
A10 Networks White Paper, September 2006
Network Security
Application firewalls offer specialized protection
SearchNetworking, September 21, 2006
Dave Piscitello's Blog
What Security Professionals can learn from Air Travel Restrictions
Dave's Blog, August 2006
Security Expert, Professional, or Practitioner?
Dave's Blog, August 2006
Domain traffic monetization
Dave's Blog, September 2006
You may have 4th amendment rights but your laptop doesn't
Dave's Blog, September 2006
For past issues, visit our CornerStone page http://www.corecom.com/html/cornerstone.html
Send us a subscribe message to receive future issues of CornerStone.