David Laceys IT Security Blog

August 2009

• Online banking security (or lack of it)

  David Lacey 28 Aug 2009

Which? Computing magazine has just published a comparison of the leading UK banks' on-line security measures. The results are quite damning. Many top banks have failed to keep up with simple best ...

• Painless patching

  David Lacey 26 Aug 2009

I also keep an eye out for winners and finalists in the Global Security Challenge, as it often brings to light some original, imaginative technologies. One that caught my attention this year is ...

• Wales leads the way

  David Lacey 24 Aug 2009

Wales is one of the least likely places you'd expect to find leadership in information security. Yet they have managed to assemble a specialist e-Crime prevention web site, complete with ...

• Combating counterfeiting

  David Lacey 18 Aug 2009

Today's UK Daily Telegraph has an interesting article on the history of counterfeiting. Amongst other things, it reminds us that little has changed in security thinking over the last 300 years. No ...

• Learning from mistakes

  David Lacey 13 Aug 2009

Making a mistake once is good for your education. Making it twice means you're not learning fast enough. On Tuesday, Twitter suffered its second denial-of-service attack in a week. Admittedly the ...

• Public policy on cyber security

  David Lacey 12 Aug 2009

Whatever your views about the current status and future prospects for public policy on cyber security, one thing is clear: we're heavily dependent on the mood at the top of US Government. Us ...

• Context is King

  David Lacey 09 Aug 2009

I had a few comments from friends after my last posting on Adam Laurie's attack on the UK Identity card. Many missed the point. The issue is not whether it's possible to forge or modify an Identity ...

• Who can you believe?

  David Lacey 08 Aug 2009

I was disturbed to read about Adam Laurie's claim that he successfully cloned and changed the data on a UK Identity Card. I was also concerned to read the Home Office response that "This story is ...

• The convergence of information and physical security

  David Lacey 05 Aug 2009

I'm often asked for advice on organising security functions. One increasingly common question is should information and physical security be merged. I have lots of observations on that, having ...

• In search of a cyber security czar

  David Lacey 04 Aug 2009

The Wall Street Journal reports that Melissa Hathaway has resigned from her role as acting US National Cyber Adviser. This is a role that calls for broad subject matter experience, first class ...

• More of the same won't do

  David Lacey 02 Aug 2009

Symantec's share price dipped last week following profit and sales forecasts that fell short of analysts' estimates. The explanation from Enrique Salem, their CEO, was that companies were switching ...