Cyber Skills Training at SANS Rocky Mountain Fall 2017. Save $400 thru Aug. 2.

SANS Security Trend Line

Using the DHS Continuous Diagnostics and Mitigation Contract to Make Real Advances in Security

On 7 November in Washington DC, SANS held a Department of Homeland Security Continuous Diagnostics and Mitigation (DHS CDM) Award Workshop. If you are not familiar with DHS CDM, details can be found here but here is a quick summary: The Department of Homeland Security (DHS)'s Continuous Diagnostics and Mitigation (CDM) Program has proposed three … Continue reading Using the DHS Continuous Diagnostics and Mitigation Contract to Make Real Advances in Security


Twelve Word Tuesday: Learning from the Automotive Industry: Moving Security from Rustproofing to OnStar

If software, like modern cars, came rustproofed security focus could shift upstream. Continue reading Twelve Word Tuesday: Learning from the Automotive Industry: Moving Security from Rustproofing to OnStar


Twelve Word Tuesday: Think Local and Beware Advanced Threat Detection That Relies on Magical Clouds

If cloud-based malware inspection is all-powerful, why were AV vendors APT blind? Continue reading Twelve Word Tuesday: Think Local and Beware Advanced Threat Detection That Relies on Magical Clouds


Twelve Word Tuesday: 3D Printing Instantly Creates Tire Patches, But Patching Software Takes Months?

Probably under .1% of critical business apps would break with autopatching enabled. Continue reading Twelve Word Tuesday: 3D Printing Instantly Creates Tire Patches, But Patching Software Takes Months?


The Internet of Things: Scary Stuff but a Chance to Advance

A small crowd braved the government shutdown, a BART strike and San Francisco's trademark fog to attend SANS' first Securing the Internet of Things Summit in San Francisco, CA. A short recap: I started out by making fun of some of the hype out there - the bottom line is the IoT is just everything … Continue reading The Internet of Things: Scary Stuff but a Chance to Advance