One of my biggest beefs with the security technology industry and even with auditors and legislators has been to mindlessly push encryption as the solution to data theft problems. To quote Bruce …

I’ve wanted a good operational definition for when you should use URI or URL and so here’s my attempt: Summary: URI refers to a resource. e.g. urn:isbn:0-395-36341-1 for a book by ISBN A …

This could be one of the coolest things to come along in a while. I heard it mentioned at OWASP and then just found an article on Financial Cryptography about it as well. FYI, wikipedia article on …

This one boggles the mind. I had to send it for publication in Risks. The Risks Digest Volume 24: Issue 93 Computer Failure Causes Closure of Seattle Downtown Transit Tunnel The tunnel was opened, and …

-apis This post is directly related to some work I’m going to be doing so I was happy to stumble across it in my feed reader. Bottom line: Use IUri::IsEqual. Future extra credit: use Reflector …

There are so many sites that allow downloading and rating software; you have to find the few that you can trust and use those. And use multiple sources of information to validate the ratings. Beware …

Susan Landau - A Gateway for Hackers - washingtonpost.com Current administration policy is replete with examples of quickly enacted efforts whose consequences led to the opposite effect. (Beware of …

It was unclear from my cursory read of the materials whether machines will require voter verifiable paper audit trails. At least the Sequoia and Diebold machines must have their ballots hand-counted …

I finally have my patches and binaries for the latest version of dspam cvs available at my oz.net page for download. There have been upwards of 30 patches applied to dspam 3.8.0 in the cvs version …

An earlier response. Oh, brother. There is nothing wrong with this country except that we need a do-something congress and to way 468 days for a new president. We live in a pluralistic society. We do …