Shostack + Friends Blog

Recent Blog Posts, Page 30

DNS Security

I'm happy to say that some new research by Jay Jacobs, Wade Baker, and myself is now available, thanks to the Global Cyber Alliance. (13 Jun 2019)

 

When security goes off the rails

My newest post over at Dark Reading ponders regulation. (07 Jun 2019)

 

Polymorphic Warnings On My Mind

The more we see it, the more we ignore it. (29 May 2019)

 

Promoting Threat Modeling Work

Some thoughts on promoting others’ threat modeling work. (13 May 2019)

 

Testing Building Blocks

There are a couple of new, short (4-page), interesting papers from a team at KU Leuven discussin the building blocks of threat modeling. (07 May 2019)

 

Episode 9 Spoilers

Today is the last Star Wars Day before Episode 9 comes out, and brings the Skywalker saga to its end. (04 May 2019)

 

3 Arguments for Threat Modeling

Top 3, from Continuum (24 Apr 2019)

 

The White Box Essays (Book Review)

A resource for those developing games. (10 Apr 2019)

 

Science of Security, Science for Security

Recent article in Bentham’s Gaze (09 Apr 2019)

 

‘No Need’ to tell the public (?!?)

Secrecy isn't the best policy when it comes to public health. (08 Apr 2019)

 

Hayabusa!

Congratulations to the Hayabusa2 mission team, who flew to an asteroid, dropped multiple rovers, an impactor and a separate camera satellite to observe the impactor. The Hayabusa2 then flew around, to the far side of the asteroid to avoid ejecta from the impactor. In a few weeks, Hayabusa2 will probably land, collect more samples and then fly back to Earth. (06 Apr 2019)

 

Books Worth Your Time (Q1 2019)

Just what the title says... (05 Apr 2019)

 

Leave Those Numbers for April 1st

Over-inflated numbers won't scare me into buying your ‘solution’. (02 Apr 2019)

 

20 Years of STRIDE: Looking Back, Looking Forward

Has it been that long already? (01 Apr 2019)

 

Cybersecurity is not very important

Some points to consider, from Andrew Odlyzko. (22 Mar 2019)