How Do YOU Establish a Secure Computing Environment?
sneakyimp writes "We've seen increasingly creative ways for bad guys to compromise your system like infected pen drives, computers preloaded with malware, mobile phone apps with malware, and a $300 app that can sniff out your encryption keys. On top of these obvious risks, there are lingering questions about the integrity of common operating systems and cloud computing services. Do Windows, OSX, and Linux have security holes? Does Windows supply a backdoor for the U.S. or other governments? Should you really trust your Linux multiverse repository? Do Google and Apple data mine your private mobile phone data for private information? Does Ubuntu's sharing of my data with Amazon compromise my privacy? Can the U.S. Government seize your cloud data without a warrant? Can McAfee or Kaspersky really be trusted? Naturally, the question arises of how to establish and maintain an ironclad workstation or laptop for the purpose of handling sensitive information or doing security research. DARPA has ...
amazon
android
apple
checklist
darpa
encryption
environment
google
government
information
integrity
invincea
kaspersky
linux
mcafee
osx
practice
privacy
question
security
service
ubuntu
usd
version
windows
workstations
Found more than 1 month ago on channel
Slashdot
MobileSpaces Picks Up $3M From Accel To Let Workers Use Enterprise Apps On Their Own Phones
With Apple's iPhone and other Android devices quickly permeating the workforces of the country's biggest companies, corporations are wrestling with how to let employees work from their own personal smartphones. MobileSpaces is attacking this problem with a fresh $3 million in funding from Accel Partners. It creates a workspace or container app that employees can download from a store like Google Play, where they can securely access all of their companies' data. "How can an enterprise allow work applications to co-exist on an Android or iOS device and be able to govern their company's information while respecting the employee's privacy?" said David Goldschlag, who used to be the vice president of mobile at security giant McAfee.
accel partners
android
apple
applications
corporations
david
goldschlag
google
information
ios device
iphone
mcafee
mobilespaces
privacy
security
Does Apple Need To Get Serious About Security?
An anonymous reader writes "An article at The Verge makes the case that Apple's development of its cloud services hasn't been accompanied by the necessary effort to ramp up security to match users' increasing levels of risk. As evidence, they use a recent (and very simple) security hole that allowed anyone to reset an Apple ID password with just a user's email address and birth date. Apple's initial response failed to fully stop the exploit, and then it took several days for them to fix the issue. 'A server-side attack on Apple's cloud could get customers' credit card numbers and addresses, device backups with their encryption keys — as well as contacts and Apple IDs — anonymously and in bulk. Those systems may be defended like a castle, but bandits have plenty of places to chip away at private information at the periphery: intercepting wireless location data, cracking the still-private protocols for services like FaceTime or iMessage, or imitating iTunes updates to install to take over ...
apple
billion
business
ddos
development
devices
encryption
evidence
facetime
ids
imessage
information
itunes
location
policy
practice
privacy
secrecy
security
service
Why Your Next Phone Will Include Biometric Security
An anonymous reader sends this quote from Forbes: "... it is an almost certainty that within the next few years, three biometric options will become standard features in every new phone: a fingerprint scanner built into the screen, facial recognition powered by high-definition cameras, and voice recognition based off a large collection of your vocal samples. ... We store an enormous amount of our most intimate and personal information on cell phones. Businesses today are already struggling with policies regarding bringing devices from home, and it’s only going to get more difficult. A study by Symantec highlighted the depth of the problem – around the world, all different types of companies consider enterprise mobile device security to be one of their largest challenges. ... Ever since Apple purchased Authentec Inc in July of last year, there has been an endless stream of news stories obsessing over whether Apple will include a fingerprint scanner in their next release. In reality, Apple ...
apple
authentec
business
collection
deployment
devices
forbes
information
options
policy
question
reality
recognition
security
symantec
technology
Apple Zaps Lock Screen Bug With iOS 6.1.3, Also Updates Japanese Maps
Apple has just issued an update for iOS devices, iOS 6.1.3, which fixes the lock screen bug we described in a previous post that would allow someone to bypass the lock and access the Phone app and potentially private information. It also brings improvements to the Maps apps specific to Japan, and contains additional "security improvements" and "bug fixes."
apple
improvements
information
ios devices
japan
japanese
maps
security