You are in: Home IT Management Risk Management News March 2008

All Risk Management News - March 2008

Legacy retailers find payment card security a tough standard

Every ten weeks or so, more than 1,400 physicians pay the Royal College of Physicians a fee - typically £800 - to take examinations, and most of them pay via the RCP's purpose-built website. For this, the RCP must comply with a credit card security standard called the Payment Card Industry Data Security Standard (PCI DSS), or be refused support from its sponsoring bank.

HMRC 'villain of the year' at ISPA awards

The 2008 ISPAs - the 10th annual UK Internet Industry Awards in association with Epitiro - took place in London on Friday.

PayPal launches multi-pronged attack on e-crime

"With e-crime, there's no silver bullet," says Garreth Griffith, head of UK risk management at online payment processor PayPal. "A specific initiative can have a huge impact, but it also has to be married with other initiatives along a spectrum. You can't just focus on educating users or working with law enforcement - you've got to go for a multi-pronged approach as you're constantly fighting a war against the fraud guys."

HCL implements business continuity payroll system

UK health and social care staff recruitment agency HCL is using call re-routing software to ensure its payroll systems...

Smartcard technology reaps security benefits

Two and a half years ago, Nikk Gilbert, head of security architecture at a multinational transport and energy firm, had a dream that staff could swipe a smartcard to enter a building, use that same card to pay for coffee in the canteen, then log on to their laptop... Now his dream is reality...

UK firms report jump in spend on e-discovery systems

Corporate attitudes and spending on the management of electronically stored information (ESI) for legal and regulatory matters are changing.

Seven categories of software security flaws

  • In Depth
  • Date: 17 March 2008
These seven attack vectors for software were formulated by Gary McGraw, CTO at secure code development consultancy Cigital, in conjunction with security experts Katrina Tsipenyuk and Brian Chess.

Making software secure from first principles

Steve Lipner is no stranger to the challenge of building software programs without security bugs. The director of security engineering strategy at Microsoft started trying to write secure software code in the seventies. "My idea at the time was that we'd build a full mathematical model of security," Steve Lipner says, recalling a plan to write a set of specifications that would guarantee a secure piece of software. "We'd build our systems to implement the specifications. We'd prove that the mathematical model was consistent, and that the specificiations corresponded to the model, and that the code would conform to the specifications. Then we'd all go home and work on something else."

Telford council adopts Sophos platform to protect schools from spam

Telford and Wrekin Council has deployed the Sophos E-mail Security and Control platform to defend local schools' e-mail from spam.

Information commissioner seeks greater powers

The recent reported loss of HMRC discs containing child benefit details has once again thrown back into the spotlight whether the information commissioner should be given greater powers to deal with breaches of the Data Protection Act 1998, say Elaine Fletcher, senior associate, and Michael Bridgett, associate at Eversheds LLP.
Results Page: 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 PREVIOUS | NEXT
ADVERTISEMENT
ADVERTISEMENT

Products & Services

© Reed Business Information LtdAbout us|Contact us|Advertise|Terms & Conditions|Disclaimer|Privacy policy|Sitemap|RBI Jobs|Industry Resources
GVL6-20081126.1