The Security Blog

Welcome! Please comment and leave me a note telling me what you like and what you'd like to see more of. Sign up to my RSS Feed!

Sitemap

• The Security Blog
• Some of My Work
  • Cloud Computing Security
    • Cloud Computing Security Full Articles
    • Cloud Computing Security Related Articles List
    • Cloud Computing Security Related Blog Entries
    • Cloud Computing Security Speeches and Presentations
  • PCI Compliance
    • PCI and Compliance Speeches and Presentations
    • PCI Compliance Full Articles
    • PCI Compliance Related Articles List
    • PCI Compliance Related Blog Entries
  • Supervisory, Control And Data Acquisition (SCADA) Security
    • Blog Entries Relating to SCADA Security
    • Full Articles Related to SCADA Security
    • SCADA Keynotes and Presentations
    • SCADA Related Articles List
  • Business Privacy and Security Breach Issues
    • Keynotes, Speeches and Presentations
    • Privacy and Security Breach Related Articles
    • Privacy and Security Breach Related Articles List
    • Privacy and Security Breach Related Blog Entries
  • General Security Topics
    • Blog Entries About General Security Topics
    • Books I Contributed To
    • General Security Article List
    • General Security Keynotes, Speeches and Presentations
• Resources
  • Cloud Security Alliance’s Security Guidance for Cloud Computing
  • Collection of Breach Notification Laws
  • Global Privacy Standards for a Global World||The Madrid Privacy Declaration
  • International Privacy Resources A-L | Privacy Rules A-L | Privacy Laws A-L | Privacy Regulations A-L
  • International Privacy Resources M-Z || Privacy Rules M-Z | Privacy Laws M-Z | Privacy Regulations M-Z
  • US Privacy Resources || US Privacy Rules | US Privacy Laws | US Privacy Regulations
  • Supra-national Organizations Privacy Resources
  • NIST’s Definition of Cloud Computing – SP-800-145
  • NIST’s Cloud Computing Synopsis and Recommendations – SP-800-146 (Draft)
  • ENISA’s Cloud Computing Risk Assessment
  • Sitemap
• The Library
  • 201 CMR 17: A New Tea Party!!
  • What Can Business Leaders Learn From the Iran Affair About Security and Social Media
  • Full List of Published Works
    • Periodi
    • Published Books
  • Full List of Speeches and Presentations
  • Where PCI DSS Falls Short (and How to Make it Better)
  • The Strategy to Secure the Federal CyberSpace
  • Cloud Security: Danger (and Opportunity) Ahead (Part I)
  • Interview by Bill Brenner, CSO Magazine (Audio)
  • Iran and the Internet: A Conversation With Ariel Silverstone
  • Managing the Network Security Challenge
  • Temple University Moves Beyond Reactive IT Security
  • Temple University Offers a Lesson in Information Security
  • Toward a Virus-Free Campus
  • Student Awareness Strengthens Security
  • The Ostrich Syndrome
  • Scorecards and Dashboards (in IT Risk Solutions)
  • Our Privacy Policy
• Blog
• Contact
• References | Bio
  • Bio
  • Sample Comments
  • What Colleagues Say About Me
  • Client Comments
  • Coworkers and Employees
  • Business Executives’ Comments
  • Peers’ View
  • Vendors’ Sentiments
• Cloud Computing Security
  • The Microsoft approach to cloud transparency - Part III
  • The Microsoft approach to cloud transparency - Part II
  • The Microsoft approach to cloud transparency - part I
  • Clearing the Cloud Part III || How Do You Solve A Problem Like “A Cloud”? || Cloud Computing Security
  • Clearing the Cloud Part II |A Ray of Sunshine On A Cloudy Day || Cloud Computing Security
  • Evolution of Defense in Depth
  • Cloud Security: Danger (and Opportunity Ahead)
  • More about Cloud Security
  • Cloud Security Article - 1st in a Series
  • RSA 2009 Summary
• General Security
  • SCADA - and now for something new...
  • SEC Guidance Regarding Disclosure of Information Security Risk
  • How To Stop G+ Searches in Google
  • The Coming Storm: PCI DSS 2.0
  • Thoughts on Intel's "<i>Global Digital Infrastructure Policy</i>" document
  • Proposed Changes to HIPAA / HITECH, Part I
  • The Needed Rebirth of Security
  • 201 CMR 17:00 A New Dawn
  • Evolution of Defense in Depth
  • Comments on 201 CMR 17:00
  • How to Create a Privacy Policy | Part 5
  • California's New Privacy & Breach Notification Law: SB 20
  • How to Create a Privacy Policy Part 4
  • Create Privacy Policy How-To: Part III
  • OWASP and Uncle SAMM
  • Creating a Privacy Policy II
  • How to Create a Privacy Policy
  • Blacklists, Whitelists and Secure Computing
  • Reading Tea Leaves - The Difference Between Old And New CMR Rules Part III
  • Reading Tea Leaves - The Difference Between Old And New CMR Rules Part II
  • Reading Tea Leaves - The Difference Between Old And New CMR Rules Part I
  • Tea Party Switching Flavors: New Version for MASS 201 CMR 17:00
  • The Maine Event: The Good, The Bad and The Unenforceable
  • Face It! | Privacy, Biometrics and DNA
  • This Just In (Twitter) | Twitter Is Down
  • No Digital Footprint Left Behind
  • The Biggest Hole of It All
  • How to Talk to Management About Security: Part 3 of 3 - Guest Blog
  • Apple Just Doesn't Get It | Apple and Security
  • How to Talk to Management About Security: Part 2 of 3 - Guest Blog
  • What is A Cyberwar?
  • How to Talk to Management About Security: Part 1 of 3 - Guest Blog
  • Unlawful Intercept
  • Unified Privacy Primer
  • Lawful Intercept(ion) Primer Part 3 - How?
  • Lawful Intercept(ion) Primer Part 2 — Why?
  • Lawful Intercept(ion) Primer Part I - Introduction
  • Time for a Cyber NonProliferation Treaty?
  • The Trouble with <s>Tribbles</s> Apples
  • Talking Points: A STRATEGY TO SECURE THE FEDERAL CYBERSPACE
  • President Obama Announces a "Cyber Czar"
  • A Strategy to Secure the Federal Cyberspace
  • More about Cloud Security
  • Cloud Security Article - 1st in a Series
  • Improving on PCI DSS
  • RSA 2009 Summary
  • The Trouble With Security
• PCI Compliance
  • The Coming Storm: PCI DSS 2.0
  • Open Letter to the PCI Council || Suggestions to Improve PCI DSS
  • PCI DSS Wireless Analysis and Recommendations, Part 5
  • PCI DSS Wireless Analysis and Recommendations, Part 4
  • PCI DSS Wireless Analysis and Recommendations, Part 3
  • PCI DSS Wireless Analysis and Recommendations, Part 2
  • PCI DSS Wireless Analysis and Recommendations
  • Where PCI DSS Falls Short (and How to Make it Better)
  • Improving on PCI DSS
• Privacy
  • The Microsoft approach to cloud transparency - part I
  • Data Privacy Day 2013 - No Digital Footprint Left Behind Tutorials
  • How To Stop G+ Searches in Google
  • Thoughts on Intel's "<i>Global Digital Infrastructure Policy</i>" document
  • Proposed Changes to HIPAA / HITECH, Part I
  • The Needed Rebirth of Security
  • 201 CMR 17:00 A New Dawn
  • The Security Berry-meter | Security and The Blackberry
  • Evolution of Defense in Depth
  • Comments on 201 CMR 17:00
  • How to Create a Privacy Policy | Part 5
  • California's New Privacy & Breach Notification Law: SB 20
  • How to Create a Privacy Policy Part 4
  • Create Privacy Policy How-To: Part III
  • Creating a Privacy Policy II
  • How to Create a Privacy Policy
  • Reading Tea Leaves - The Difference Between Old And New CMR Rules Part III
  • Reading Tea Leaves - The Difference Between Old And New CMR Rules Part II
  • Reading Tea Leaves - The Difference Between Old And New CMR Rules Part I
  • Tea Party Switching Flavors: New Version for MASS 201 CMR 17:00
  • The Maine Event: The Good, The Bad and The Unenforceable
  • Face It! | Privacy, Biometrics and DNA
  • No Digital Footprint Left Behind
  • The Biggest Hole of It All
  • Apple Just Doesn't Get It | Apple and Security
  • Unified Privacy Primer
  • Lawful Intercept(ion) Primer Part 3 - How?
  • Lawful Intercept(ion) Primer Part 2 — Why?
  • Lawful Intercept(ion) Primer Part I - Introduction
  • The Trouble with <s>Tribbles</s> Apples
  • A Strategy to Secure the Federal Cyberspace
• SCADA
  • SCADA - and now for something new...
  • The Biggest Hole - Keeps Getting Bigger
  • The SCADA Scandal || SCADA Security
  • A Strategy to Secure the Federal Cyberspace
• Wireless & Mobility
  • The Security Berry-meter | Security and The Blackberry
  • PCI DSS Wireless Analysis and Recommendations, Part 5
  • PCI DSS Wireless Analysis and Recommendations, Part 4
  • PCI DSS Wireless Analysis and Recommendations, Part 2
  • PCI DSS Wireless Analysis and Recommendations