Tiptoeing Through Vulnerabilities

I sympathize with developers who throw up their hands and say, "I don't do security stuff." No matter what you choose, there's a trade off that could go wrong. It's especially troublesome if one deploys a "security website." I've deployed security education websites in many environments over the past 20 years, and I rarely achieve... Continue Reading →

Boak’s Puzzle: Disposing of Classified Trash

Recently I was skimming through the NSA's "classified history of COMSEC" (Volume 1 and Volume 2).  This "history" is a transcription of lectures by David G. Boak, who liked to explain NSA-related topics from a historical perspective. He clearly inspired a generation of NSA's employees. The last "real" page of the document contains a humorous story... Continue Reading →

Create a website or blog at WordPress.com

Up ↑