Geeks With Blogs
Geeks with Blogs, the #1 blog community for IT Pros
Sergey Simakov
News
Search this blog
Blogs around me
Post Categories
Archives
Sergey Simakov blog Information security world
18
Dec 06
CISSP exam and new home for blog
Sorry for lack of posts last month. I was really busy at work with different projects (PKI, SC, security reviews) and tried to learn new CBK domains at home, so I basically didn't have a time to blog at all. Again, sorry. Today I had an CISSP exam (you know - 6 hours is hard ;-) after week of CBK review seminars (by Dennis Griffin) with some of Microsoft ......
Posted On Monday, December 18, 2006 1:08 AM Personal
20
Nov 06
Great blog on smartcards deployment
I just found that I've missed a great blog by Steve Patrick (from Critical Problem Resolution team) with invaluable information on SmartCard deployment, so begin with this post - So, you want to use smart cards?. Thanks for sharing this information, Steve! [subscribed] ......
Posted On Monday, November 20, 2006 10:13 PM
25
Oct 06
Consolidation of Managed Security Services market
Well, it didn't take long time after SecureWorks/LURHQ and IBM/ISS deals: British Telecom acquires Counterpane.
Posted On Wednesday, October 25, 2006 10:09 PM
24
Oct 06
Active Directory Certificate Server Enhancements in Windows Server Longhorn RTW
Active Directory Certificate Server Enhancements (aka Windows PKI) in Windows Server "Longhorn" guide by Carsten Kinder with help of PKI PMs was finally released to web. This comprehensive document contains information about new PKI features in Windows Server "Longhorn" such as: Cryptography API: Next Generation (aka CNG) support in CAs to provide crypto ......
Posted On Tuesday, October 24, 2006 11:24 PM
18
Sep 06
BitLocker cryptographic algorithm
FYI - Niels Ferguson posted a link to a document with details about cryptographic algorithm that is used in BitLocker (AES-CBC with a specialized diffuser that improves the security against manipulation attacks) at System Integrity team blog ......
Posted On Monday, September 18, 2006 7:59 AM
08
Sep 06
Attack on RSA signature implementation
Good description of Daniel Bleichenbacher's attack on RSA signature implementations that may, under some common circumstances, break SSL/TLS in Matasano blog.
Posted On Friday, September 8, 2006 9:03 PM
07
Sep 06
Joint architecture for NAP/NAC interoperability announcement
Joint architecture for Microsoft Network Access Protection (NAP) and Cisco Network Admission Control (NAC) interoperability is officially announced at Security Standard conference in Boston. More information is available in Cisco Network Admission Control and Microsoft Network Access Protection Interoperability Architecture whitepaper and NAP team blog ......
Posted On Thursday, September 7, 2006 5:18 AM
24
Aug 06
Social engineering threats
It's a known fact that one of the weakest links in current security systems are people, and last week very interesting paper was released as part of Midsize Business Security Guidance - How to Protect Insiders from Social Engineering Threats ......
Posted On Thursday, August 24, 2006 4:19 PM
17
Aug 06
Interesting blog
I've missed the fact that Kevin Lam from ACE (Application Consulting & Engineering) Team (author of very interesting Accessing Network Security book about penetration testing) is now blogging - subscribed ......
Posted On Thursday, August 17, 2006 7:22 PM
18
Jul 06
Microsoft acquires Sysinternals and Wininternals
According to Mark's blog post - Microsoft has acquired Wininternals and Sysinternals: developers of great troubleshooting and management tools such as Recovery Manager, Protection Manager and ERD Commander (part of Administrator Pack), free Autoruns/Process Explorer/Rootkit Revealer, and many others that are included in my must-have utilities list. ......
Posted On Tuesday, July 18, 2006 5:44 PM
23
May 06
Crypto classes
Michael Howard posted a link to the lecture materials from University of Washington's cryptography class. And you should pay attention to the lecturers list: Brian LaMacchia (ex-security architect for the .NET Framework and Common Language Runtime) Josh Benaloh (senior cryptographer in Microsoft Research) John Manferdelli (Distinguished Engineer, worked ......
Posted On Tuesday, May 23, 2006 6:41 PM
26
Mar 06
Red pill
Well, it's time to announce some changes in my professional life: Ch-ch-ChangesJust gonna have to be a different manTime may change meBut I can't trace time [by David Bowie] So, I've taken a red pill (it's just our way of saying "we've taken a job at Microsoft." ;-) and now I'm working with great people in Microsoft Consulting Services Russia team and ......
Posted On Sunday, March 26, 2006 9:16 PM
Identity management seminar in Moscow
Last month Rafal Lukawiecki (Project Botticelli Ltd) made a very good presentation about 'Identification and access management in heterogeneous enterprise networks' in Moscow Microsoft office (program in russian is available here). Overview and comparison of Microsoft identity management technologies (MIIS, ADFS) was the most interesting part of this ......
Posted On Sunday, March 26, 2006 8:29 PM
19
May 04
Two approaches to check functions parameters
Larry Osterman posted interesting discussion about checking parameters in components - Should I check the parameters to my function?. Currently I'm using school one approach (always check incoming data with IsBadXXXPtr), but: The way you check for bad pointers on Win32 is by calling the IsBadReadPtr and IsBadWritePtr API. Michael Howard calls these ......
Posted On Wednesday, May 19, 2004 6:56 AM
28
Feb 06
New Year in Sri Lanka
Better late than never. I spent this New Year and russian Orhodox Christmas at beautiful Sri Lanka (Ceylon) island. Some photos from this travel are posted on my Flickr account. Weather was really great (but unsually rainy for this time of year on the south-west side of island) - especially if you compare it with Moscow weather in January (60 degrees ......
Posted On Tuesday, February 28, 2006 8:37 PM
14
Dec 05
SmartCard Base CSP and Windows PKI resources
Yeap, I knew that I forget someting - David Cross announced on public.security.crypto newsgroup release of the Smart Card Base Cryptographic Service Provider as free download (also available via Windows Update): Writing a Smart Card CSP has not been trivial. This has been addressed by splitting the CSP architecture to a Base CSP and Card Module architecture. ......
Posted On Wednesday, December 14, 2005 10:22 PM
news for last three months
Well, period of silence on this blog ended. Unfortunately I couldn't post for last three months for many reasons and I'm sorry for it :(( In this post I'll try to summarize what interesting things happened in security from my point of view (actually Valery already mentioned most of them in his blog): Peter Gutmann updated his “Godzilla crypto ......
Posted On Wednesday, December 14, 2005 10:03 PM
15
Sep 05
Security slide decks at PDC2005
For poor souls like me (who could not attent PDC this year ;-) - at least we can check PDC2005 slide decks [via Sam Gentile]. I'm interested in “Scrubbing Source Code for Common Coding Mistakes (FxCop and PreFast)“, “Building IPv6, Firewall, and IPsec Aware Applications“ and especially “Understanding, Enhancing, and Extending ......
Posted On Thursday, September 15, 2005 8:23 PM
12
Aug 05
Humans
Valery shared that wonderful quote from Network Security: Private Communication in a Public World last week: Humans are incapable of securely storing high-quality cryptographic keys, and they have unacceptable speed and accuracy when performing cryptographic operations. (They are also large, expensive to maintain, difficult to manage, and they pollute ......
Posted On Friday, August 12, 2005 12:14 PM
13
Apr 05
New security books from Microsoft security team
As I posted recently Protect Your Windows Network book by Steve Riley and Jesper M. Johansson is available for pre-ordering. Both Michael Howard and Steve Riley posted updated information about preorder (with promo code ;-) Also yesterday I accidentially found new book by Michael, David LeBlank AND John Viega - 19 Deadly Sins of Software Security due ......
Posted On Wednesday, April 13, 2005 11:03 AM
Copyright © Sergey Simakov | Powered by: GeeksWithBlogs.net | Join free


Geeks With Blogs Content Categories ASP.Net SQL Server Apple Google SharePoint Windows Visual Studio Team Foundation Server Agile Office Design Patterns Web Azure
Brand New Posts on Geeks with Blogs 0