Call for papers SecurityFocus ( www.securityfocus.com ) is currently accepting submissions for new Infocus articles. We would like to extend an invitation to security researchers, authors and academics for submissions on topics of interest to the security community. Submissions should include a short summary along with the author's name, email address and contact information. All submissions should be in MS Word format and should be sent to: editor@securityfocus.com ![]() This article provides an overview of ITIL, a management-level set of best practices and guidelines for an integrated and process-based approach to IT and security. 2004-12-22 http://www.securityfocus.com/infocus/1815 ![]() This article discusses current trends in penetration testing for web application security, and in particular discusses a framework for selecting the best tool or tools to use for this increasingly common type of application. 2004-10-27 http://www.securityfocus.com/infocus/1809 ![]() The purpose of this article is to analyze a public exploit in a lab environment, see the alerts generated by an intrusion detection system, and then do some packet analysis of the malicious binary in order to better understand what it does and how you may have been compromised. Part 2 of 2. 2004-09-15 http://www.securityfocus.com/infocus/1801 ![]() This article seeks to answer the question: is your personal data safe? Or do you give it away during almost every transaction you make with government or commercial entities? 2004-08-19 http://www.securityfocus.com/infocus/1797 ![]() The purpose of this article is to analyze a public exploit in a lab environment, see the alerts generated by an intrusion detection system, and then do some packet analysis of the malicious binary in order to better understand it. 2004-08-11 http://www.securityfocus.com/infocus/1795 ![]() This article series guides users new to the security field through some of the key skills required to work as a security analyst. Part two puts the skills into context by simulating a "day in the life" of a network security analyst, using an example of what steps to take when new exploit code appears. 2004-06-09 http://www.securityfocus.com/infocus/1784 ![]() This paper provides an overview of the H.323 (VoIP) protocol suite, its known vulnerabilities, and then suggests twenty rules for securing an H.323-based network. 2004-06-01 http://www.securityfocus.com/infocus/1782 ![]() This is the second of a two-part series that focuses on the centralized management of security for mobile users. Part two completes the discussion by presenting additional layers of defence to help protect valuable, mobile data. 2004-05-25 http://www.securityfocus.com/infocus/1781 ![]() This article guides users new to the security field through some of the key skills required to work as a security analyst. The focus is on core TCP/IP competency and related technologies such as intrusion detection systems, firewalls and routers. 2004-05-17 http://www.securityfocus.com/infocus/1779 ![]() This is the first of a two-part series that focuses on the centralized management of security for mobile users. Part one introduces vendor-neutral questions you should consider about firewalls and anti-virus software for your mobile users. 2004-04-21 http://www.securityfocus.com/infocus/1777 |
Privacy Statement |