Security Matters Newsletter - September 03

What are CESG CLAS Consultants?

CESG, the Information Assurance arm of GCHQ, has created a pool of high quality consultants to provide Information Assurance advice to government departments and other organisations.
....more

Policy that lives … enforcing security in spite of the users
By Illena Armstrong, US editor for SC magazine

Creating a security policy may be hard, says Illena Armstrong, but making sure that users comply is always the problem.
....more

Intrusion Prevention and Detection … are they just missing the point?
By Jean-Charles Barbou, vice president EMEA, Tripwire

Organizations know they must protect themselves from the mysterious enemy that is a ‘hacker’ and viruses such as LoveLetter, but often there is a misguided belief that these external threats are the main risks to businesses. There is still a fundamental lack of awareness, especially amongst small and medium-sized businesses, of the threat lurking within the organization and the technologies available to protect them.
....more

IT managers fear life without email
By Rachel Fielding (vnunet.com)

Jobs are on the line - and users on the warpath - when email systems fail.
....more

What is a Code of Connection?
By David Bryant (Hytec Information Security Ltd)

Many organisations are now mandating adherence to Codes of Connection before allowing internal departments or external third parties to connect to the corporate IT infrastructure. So what is a Code of Connection and why are they so important?
....more

Vulnerability assessment … Hytec launches new service

Testing infrastructures at regular intervals is essential to ensure they remain secure, effective and correctly managed.
....more