WEIS 2011 :: Session 1 :: Attacks :: Sex, Lies & Cyber-crime Survey

Presentation [PDF]

WEIS 2011 :: Session 1 :: Attacks :: Where Do All The Attacks Go?

Dinei Florncio Cormac Herley Presentation [PDF] Twitter transcript #weis2011 New threat model (that may scale). Rather than use individual users & attackers, use population of users, pop of attackers #weis2011 assumption/proposition: attacker attacks when Expected{gain} > Expected{loss} #weis2011 (me) more good math on the slides. using the populations, they made a probability model to predict… Continue reading →

Herding [Fire]sheep

By now, many non-IT and non-Security folk have heard of Firesheep, a tool written by @codebutler which allows anyone using Firefox on unprotected networks to capture and hjijack active sessions to popular social media sites (and other web sites). The sidebar/extension puts an attactive and easy-to-understand GUI over a process that “real” security people have… Continue reading →

“Web Development Is Dangerous”

Those were the words that greeted me within five minutes of checking out the Flask microframework for Python web applications. I feel compelled to inline those four, short paragraphs: I’m not joking. Well, maybe a little. If you write a web application, you are probably allowing users to register and leave their data on your… Continue reading →

rud.is

"In God we trust. All others must bring data"

Posts Tagged → PDF

WEIS 2011 :: Session 1 :: Attacks :: Sex, Lies & Cyber-crime Survey

WEIS 2011 :: Session 1 :: Attacks :: Where Do All The Attacks Go?

“Web Development Is Dangerous”