Attackers, hackers, and the CMA
Laptop Encryption Becoming Standard Issue
Bank login procedures - soapbox
The Future of Fraud Detection
Risk assessment - how many locks?
Secure Software Development
OWASP - Secure Development Projects
OneCare - correction to earlier blog
Is the NHS's National Programme for IT in crisis management mode?
Anonymous comment on NHS decision to withdraw speakers from Harrogate healthcare IT conference
Identity Management Survey
The Hidden Cost of Fraud
Private Eye special report on NHS IT programme
Microsoft OneCare - do we care?
The biggest cause of IT failures ... and where it leaves ID cards and the NHS IT programme
Connecting for Health pulls speakers from Europe's largest healthcare IT conference at Harrogate
A new secure software special interest group
Wi-Fi Eavesdropping Gets Easier
Building an information security strategy
Secure Software Development - Let's make it happen
Thoughts on UTM
Are We Ready for RFID?
Dekstop AV - is Vista enough?
Views of two suppliers on the NHS's National Programme for IT
Tories renew their call for a full review of the NHS's National Programme for IT
Risk appraisal and acceptance process
Compliance and risk
Applying the Fourth Dimension to Security
OWASP Testing Guide v2
Dispatches C4 documentary programme on Monday 26 February on the NHS
The NHS IT programme - a "much more open dialogue" - David Nicholson, Chief Executive of the NHS.
Scope of Information Security
Delivering a vision - whatever that means
Time for a New Standard for Software Development
Man on train displays password
Importance of process
Online Shopping Deserves Better Security
Defending the NHS's National Programme for IT?
More on Laptop Losses – How many go missing?
Laptop Thefts Down at the FBI
Threat modelling and risk ownership
Private Eye and Channel Four report on NHS's National Programme for IT
When an IT-based project runs into trouble, should you respond by arguing its aims are supported?
Sent to me by a GP
Consolidation or Proliferation? The Future of Security Products
The Importance of Security Surveys
Confidential IT contracts may have to be disclosed - Information Tribunal decision under FoI
Two factor authentication and PayPal
Responding to the Growing Complexity in IT and Security
Supplier to £12bn NHS IT scheme questions whether key aspects will work
Zero day attacks
The Future of Standalone Security Products
Microsoft joins the Deperimeterisation Bandwagon
Planning for The Future
DWP pension letter mix-up
Portable wireless hacking device
Health Committee inquiry into the NHS IT programme - details announced
Risk Assessment Process
NHS IT programme at risk even if technically sound?
Opinion on the IISP
The Art of User Awareness
IT projects - links to reports on mistakes, incompetence and lessons learned
Data handling security
e-Crime in The Capital
Lessons learned from failure of online passport application system EPA2
From Forensics to e-Discovery
Question on complex passwords
Passport Service director: Why we’re going public on things we didn’t always get right
What went wrong - MP3 files on our interview with Bernard Herdan, Identity and Passport Service
Comment - when failure has a partly positive outcome
OWASP - Open Web Application Security Project
Gaining the Attention of Management Boards
Smartcard sharing - comment by Martyn Thomas
More on the smartcard story - a solution
Smartcard sharing - a breach of IT security or a way around slow access to NHS Care Records?
South Warwickshire General Hospitals NHS Trust statement to Computer Weekly on smartcard sharing
Selling the NHS's National Programme for IT - a PR challenge
Moore's Law and Security
White Hats Do Good
Security and the Environment
Time to Publicise Security Incidents?
EDS’s settlement with the government over tax credits
Assessing data handling
Downside of vulnerabilty testing
What contribution to NHS IT do Local Service Providers make?
Tom Brooks - opinion piece - What contribution to NHS IT do Local Service Providers make?
Levels of detail
Risk perceptions and historical data
Is the NHS's National Programme for IT costing too much?
Employee Monitoring - a hot topic for 2007
More Testing Please
Compliance, change control, and firewalls