Follow us
Category Archives: Mobile Security
It may surprise a few people, but I’m just not worried about my credit card being stolen. In fact, I refuse to worry about it. That may sound like heresy for someone who is supposed to know a little bit … Continue reading
A hot debate over the inherent security benefits of open source software — or lack thereof — has been raging (again) since the “heartbleed” bug came to light last spring. So…..from a security expert’s point of view (yes, mine!), is … Continue reading
Posted in Botz Blog, Cloud Security, Compliance, Encryption, IBM i Security, Info Security Mgmt, Information Security, Mobile Security
Tagged AIX, AIX Security, AS/400, Closed Source, cloud security, compliance, cybersecurity, data security, encryption, Information Security, information security management, Open Source, Proprietary, security management
2 Comments
Or…How a security expert can fall for a phishing scheme Think no one will target your business with phishing attacks? Think again… This confession is a bit hard for me. Just recently I was the target of a phishing attack. … Continue reading
Posted in Botz Blog, Cloud Security, IBM i Security, Info Security Mgmt, Information Security, Mobile Security, Social Engineering
Tagged authentication, cloud security, cybersecurity, data security, IBM i Security, IBMi, info security management, Information Security, information security management, password management, phishing, security management, spear phishing
Leave a comment
Have you ever encountered a situation where a user needed to use an application that displayed all of the rows in a file, but the user really should be restricted from seeing certain rows in that file?
Posted in Announcement, Botz Blog, Compliance, IBM i Security, Info Security Mgmt, Information Security, Mobile Security
Tagged AS/400, cloud security, compliance, cybersecurity, data security, IBM i 7.2, IBM i Security, IBM i V7R2, IBMi, info security management, Information Security, information security management, V7R2
Leave a comment
OR….. How Jobs Get Authority to Objects Words have consequences. Saying things like “we’re going to tighten security” or “we’re going to remove public (or default) authority” or “we’re going to remove direct access to data” will almost invariably lead … Continue reading
Posted in Botz Blog, IBM i Security, Info Security Mgmt, Information Security, Mobile Security
Tagged AS/400, cloud security, cybersecurity, data security, IBM i Security, IBMi, info security management, Information Security, information security management, security management, security policy
Leave a comment
Recently I’ve written several blog posts about biometric authentication in IT Shops (see “Target Attack Leads to Discussion of Biometric Authentication“, “IT Shop Requirements for Exploiting Biometrics“, “Biometrics and SSO“). This post discusses a couple of secondary factors.
Posted in Biometrics, Botz Blog, Cloud Security, IBM i Security, Info Security Mgmt, Information Security, Mobile Security, Single Sign-On (SSO)
Tagged AIX, AIX Security, AS/400, biometric authentication, biometrics, cloud security, data security, IBM i Security, IBM i v7r1, IBMi, information security management, single sign on, Single Signon, sso, SSO Stat!
Leave a comment
In a recent post I noted that the Target breach once again raised the idea of biometric authentication as means of improving the protection of corporate data. Yet for all of its benefits, adoption of biometric authentication within the IT … Continue reading
Posted in Biometrics, Botz Blog, Cloud Security, IBM i Security, Info Security Mgmt, Information Security, Mobile Security, Single Sign-On (SSO)
Tagged AIX, AIX Security, AS/400, authentication, biometric authentication, biometrics, cloud security, data security, IBM i Security, IBM i v7r1, IBMi, info security management, Information Security, information security management, kerberos, security management, single sign on, Single Signon, sso, SSO Stat!
1 Comment
You’ll notice that the title of this post is “Biometrics And SSO”; not Biometrics for SSO. This is an important distinction. Most IT shops don’t realize that they can use standard SSO along with biometric authentication to implement unobtrusive two-factor … Continue reading
I find this authentication mechanism for accessing Web sites and which was proposed in October 2013 very interesting. The main reasons it’s interesting are that it would be so much easier to register at Web sites, authentication is based on … Continue reading
A popular password cracking tool was recently updated to handle passwords up to 55 characters in length. The tool, ocl-HashCat-Plus, was previously limited to passwords up to 15 characters long.
