Friday, January 28, 2011

Data Privacy Day

Many countries celebrate today as the Data Privacy Day. In India, DSCI organized a chapter meeting to start a dialogue among the group members on the various privacy issues affecting our nation and the  best ways to combat those.

Here is what Dr. Kamlesh Bajaj, the CEO of DSCI had to say on this occasion,

"With the increased digitization of personal information, Privacy has emerged as an important agenda for individuals, businesses and governments worldwide. Though a fairly matured and much debated concept in the western world, Privacy is beginning to gain relevance in India, esp. with the roll out of UID project.   To build on this beginning and reflect a comprehensive & thorough understanding of Privacy at national level discussions and policy making, it is critical to educate the organizations, government departments and more importantly the ‘vulnerable’ individuals who provide their personal information for availing business and government services."

Friday, January 21, 2011

2010 Top Ten Web Hacking Techniques


Jeremiah Grossman has published the 2010 Top Ten Web Hacking Techniques. It is an annual report that showcases the best hacking techniques published in the year.

It is an opportunity for the information security professionals to understand the new techniques and how to defend against them.

My personal favorite is the evercookie, which creates a persistent cookies in a browser.

Sunday, January 9, 2011

New set of Information Security Principles



The Information Security Forum (ISF),(ISC)² and ISACA recently released a set of 12  principles to help individuals support business objectives, defend their organizations, and promote responsible security behavior.


These 12 principles are outlined under three main categories – support the business, defend the business, and promote responsible security behavior. 


The principles are below:



principles