SlashdotMedia AdOps Asset Management

SSL for Apps Best Practices for Developers

SSL is a fundamentally sound technology that provides confidentiality, authentication, and integrity. The most significant challenge facing the SSL ecosystem is not a technological flaw or limitation, but rather the way it is being implemented and the practices around it.

This paper lists necessary steps to take to create a stronger, more trustworthy SSL implementation. All SSL Client non-browser applications should follow all the practices in this document to ensure the high level of authentication, confidentiality and integrity promised by SSL are achieved.

Simplify SSL Certificate Management Across the Enterprise

The need for SSL Certificates has moved well beyond the “buy” page to core functions of the enterprise. SSL Certificates are used to protect remote employee and partner communications via webmail, chat and IM. Browser-to-server communications for cloud-based services require SSL Certificates when used to display customer account information, business partner transactions and for employee productivity tools. Finally, SSL Certificates are used to secure server-to-server communications for applications and data exchange.

Managing individual Certificates across a large organization quickly becomes complicated with multiple locations, many divisions, and rapidly growing Web-based services. If an SSL Certificate expires, a company not only loses sales and puts customer confidence in jeopardy, employees and business partners may not be able to do their work or risk exposure of confidential information. Managing SSL Certificates across complex networks to ensure protection and prevent unanticipated expirations has become mission critical to all businesses.

This guide provides five simple steps for IT professionals to take control of SSL across the enterprise, and recommendations for a management platform for full visibility and single-point of control for these Certificates throughout their lifecycle.

Best Practices and Applications of TLS/SSL

TLS (Transport Layer Security), widely known as SSL (Secure Sockets Layer), is the most well known method to secure your web site. But it can also be used for much more. Read the white paper to learn how TLS works, best practices for its use and the various applications in which it can secure business computing.

Beginner’s Guide to SSL Certificates: Making the Best Choice When Considering Your Online Security Options

Whether you are an individual or a company, you should approach online security in the same way that you would approach physical security for your home or business. Not only does it make you feel safer but it also protects people who visit your home, place of business, or website. It is important to understand the potential risks and then make sure you are fully protected against them. In the fast-paced world of technology, it is not always easy to stay abreast of the latest advancements. For this reason it is wise to partner with a reputable Internet security company.

Website Security Threat Report Part 2

These resources have offered unparalleled sources of data with which to identify, analyze, and provide informed commentary on emerging trends in attacks, malicious code activity, phishing, and spam. Symantec’s Website Security Solutions have distilled this information down to focus specifically on the threats that are targeting online business and websites.

Join Symantec’s team of as they draw on this report to discuss:

Trends and patterns across the globe and the impact these have
Best practices to mitigate risk for online businesses
What actions you can take to protect your site and your customers

再検討を迫られるサンドボックス技術：自動解析ソリューションの優劣を見極める

セキュリティ・ベンダー各社は、従来型セキュリティ・ソリューションの限界を渋々認め、サンドボックスとして知られるダイナミック解析ソリューションを製品ラインナップに加えようと躍起になっています。自動解析ソリューションは、仮想マシン（VM）を使用してファイルの振る舞いを検証し、不正な動作の有無を確認します。しかしあまりにも多くの製品が市場に出回り、どのベンダーも同じような効果を主張しているため、最適なダイナミック解析ソリューションの選択は容易ではありません。このホワイトペーパーでは、サンドボックスの仕組み、サンドボックスに基づく大多数のアプローチが機能しない理由、VMに基づく解析ソリューションの評価基準について説明します。主な内容は次のとおりです。

サンドボックスが特効薬にならない理由
一般的なサンドボックス技術が抱える6つの重大な欠陥
VMツール評価時のチェック項目

動く標的：多様な業種に狙いを定めるサイバー攻撃者

セキュリティ担当者様高度なサイバー攻撃は、もはや政府機関や軍事関連企業だけの問題ではありません。攻撃者は、多様な業種の組織に狙いを定めています。厄介なのは、従来型のセキュリティ・ソリューションでは高度なサイバー攻撃に対処しきれないことです。高度な攻撃による被害リスクを軽減するには、攻撃者の特徴とその動機を理解する必要があります。電子書籍『動く標的：多様な業種に狙いを定めるサイバー攻撃者』では、次の内容について説明しています。

セキュリティに関する3つのよくある誤解
攻撃者の素性
攻撃者が狙う資産

アラートの質が左右する効果的なセキュリティ対策: 重要なアラートに優先的に対応するには

"セキュリティ担当者は、膨大なアラートへの対応に苦慮しています。重要なアラートを見分けることができず、その間に緊急性の高いアラートが軽微なアラートの中に埋もれていきます。意味のあるアラートが届いても、どう対処すべきか判断することもできません。中でも問題なのは、アラートが絶え間なく届く中でセキュリティ担当者が誤った安心感を感じてしまうことです。効果的なセキュリティ対策を講じるには、アラートの数ではなく質に注目する必要があります。このホワイトペーパーでは、膨大なアラートが発生する背景や大量のアラートがセキュリティにとってむしろ有害である理由、またアラートの適切な管理方法について解説します。"

Outils SIEM — Trop d’alertes tue l’alerte : L’importance de concentrer les mesures de cybersécurité sur les alertes critiques

Les équipes de sécurité croulent sous des avalanches d'alertes. Elles n'arrivent plus à distinguer les alertes qui méritent leur attention. Résultat : les alertes à caractère urgent se noient totalement dans la masse et lorsqu'un véritable problème survient, les équipes de sécurité se trouvent démunies. Pire encore, le flux continu d'alertes procure un faux sentiment de sécurité.

Pour assurer une protection véritablement efficace, les responsables de la sécurité doivent privilégier la qualité des alertes par rapport à leur quantité. Ce livre blanc explore les facteurs à l'origine de ces avalanches d'alertes, examine les raisons pour lesquelles elles s'avèrent plus néfastes qu'efficaces pour la protection de vos ressources et explique comment mieux les gérer.

Solution Guide: Choosing Your Next Move

Improving your security posture takes more than simply implementing a new solution. How can you continue to improve your ability to find and stop advanced attackers? The answer depends on your internal capabilities, existing investments, your tolerance for risk and many other factors. Our quick self-assessment will help you navigate to your next big decision.

Answer a few quick questions to help figure out your next move.

Making the Business Case for Advanced Threat Protection

Traditional network and endpoint defenses are outmatched and don’t stand a chance at preventing, investigating, or remediating today’s targeted attacks. You need an advanced security solution, but you may be struggling to convince your company’s executive team and Board to make the investment. If you want to make your case for investing in an advanced security solution to your company’s executives, then you’ll need to think like your executives.

This paper shows how to:

Properly communicate the challenges you face
Assess the business impact
Shift the discussion from bits and bytes to dollars and cents

Security Reimagined – Part 1

Conventional security detects threats too late (if at all), and resolves them too slowly. Organizations need a flexible, deeply integrated framework that offers a far-reaching view of threats and evolves as quickly as conditions do. And it must take an active, “lean-forward” posture. FireEye calls this approach Adaptive Defense™.

This two-part, educational series outlines this new approach to cybersecurity. Part I describes what features and capabilities organizations need in the face of a complex and growing threat.

Read Part I to learn:

Why it's time to reimagine your security architecture
How to reduce two key metrics: time to detection and time to resolution
How to use "hunting" and "gathering" together for better detection

M-Trends Report 2015

Talking about the threat landscape is no substitute for experiencing it first-hand. “M-Trends 2015: A View from the Front Lines,” distills the insights gleaned from hundreds of Mandiant incident response investigations in more than 30 industry sectors. The report provides key insights, statistics, and case studies illustrating how the tools and tactics of advanced persistent threat (APT) actors have evolved over the last year. The report also outlines approaches that organizations can take to improve the way they detect, respond to, and contain advanced attacks.

Breach Response: How to Prepare for the Inevitable

To avoid being breached, you have to get it right every single time. To breach you, hackers only have to get it right once. Experts advise breaches are inevitable. And according to Ponemon Institute, the average time to resolve a cyber attack is 45 days, with an average cost of $35,647 per day. The key to minimizing damage is preparation.

This white paper tells you what you need to know to be prepared for a breach. Read it to understand:

• The right breach mindset
• Response team composition
• Communication needs with employees and customers
• Legal notification requirements
• The technologies that can help

State of security operations: 2014 report of capabilities and maturity of cyber defense organizations

As the incidence and cost of cyber crime have escalated, organizations have responded by establishing security operations centers (SOCs) to detect and counter cyber attack and to assure compliance with industry guidelines. But how capable are SOCs, and where is the greatest opportunity for improvement?

HP Security Intelligence and Operations Consulting has performed maturity assessments evaluating people, processes and technology in 69 SOCs. This report presents their findings on the measured maturity level of SOCs by industry. Read it to understand:

• Areas needing the most improvement
• Lessons learned
• Recommendations on target maturity levels for enterprises and managed security service providers