I was privileged to be asked to present at the Information Age Security Leadership on the 12th March. Whilst I have a significant responsibility for security, I’m also conscious that when presenting to an audience who have chosen to attend a security event, I’m usually in the presence of far greater expertise than I can offer. As a result, I tend to do a lot of reading to try and prepare.
During the prep for this event, I came across a number of interesting papers and articles that deserve sharing. I also promised the attendees that I’d share links to the research – so here it is…
- Passwords are useless
- UCL’s research paper on people’s Compliance budget
- From the FT: Security budgets fall, attacks on the increase
- 76% of data breaches use stolen passwords from Verizon’s 2013 report – and the 2014 DBIR report and key take-outs
- Judge Preska and the Microsoft/Ireland appeal
- Windows 10 includes a horizontal scrollbar attack
- Google publish SOC3 compliance audit report
- IT needs TJ Hooper (not the same as the image to the right)
- And more on the Calculus of Negligence