Digital Defense Mastery - On the way to Trustworhty Computing

Tripwire VIA: Change Control, Compliance Mangement and SIEM in 1

2010-05-13T06:17:00.001-07:00

www.tripwirevia.com MSecurity, a leading information Security defense agency based in Israel, recommends the Tripwire VIA suite to take control knowing exactly what is happening in complex systems. FREE Video Demos show you how cool the product is.

2 FREE Secrets for Building A Digital Money Machine

2010-05-01T23:58:00.001-07:00

https://tonyrobbins.infusionsoft.com/go/mmsc/MsecurityOnline 2 FREE Secrets to building a Digital Money Machine...if you would like one...SEE THIS 1 Minute clip...it will change your life

Some thoughts on Secure Systems

2010-05-01T17:22:00.001-07:00

http://www.msecurity.net Are your computer systems secure?

As organizations become more connected, locking down systems is becoming more important than ever!

Your Defense in Depth strategy needs to have multilayered Security. If you are just starting off, or are in charge of large organization, you need to be thinking about these key pillars...

The Right tool for the right Job!

2010-05-01T17:15:00.000-07:00

There are people who are “kinda ready to learn a little about making money with internet marketing”...

And then there’s “ready to MAKE SOME MONEY with internet marketing...
http://www.mainstreetmarketingmachines.com/cmd.php?af=34624

I gotta say...this is Truely AMAZING!!!

Enjoy
See you soon!

Talsa

2010-05-01T16:23:00.001-07:00

Is this the single best video you've ever seen?

https://tonyrobbins.infusionsoft.com/go/mmsc/MsecurityOnline

It's a brand new video where Tony Robbins interviews John Reese
and Frank Kern about the psychology of success.

https://tonyrobbins.infusionsoft.com/go/mmsc/MsecurityOnline

I heard about it on Twitter over the weekend and just watched it.

It's about 40 minutes long and it is absolutely incredible.

You'll be VERY happy you saw this:

https://tonyrobbins.infusionsoft.com/go/mmsc/MsecurityOnline

Enjoy!
Talsa

P.S. Be sure to look at Reese's face when Tony tells him to come
sit on his lap. Classic :-)

Information Security Links...

2010-04-26T11:20:00.001-07:00

Hey there!
Everyone is looking for great information security resources…here are a few great ones!

1) http://www.securityfocus.com
2) http://www.scmagazineus.com
3) http://www.schneier.com
4) http://www.microsoft.com/security/portal
5) http://www.nsa.gov
6) http://www.grc.com/securitynow.htm
7) http://www.bankinfosecurity.com
8) http://www.fbi.gov/cyberinvest/cyberhome.htm
9) http://www.symantec.com/security_response/index.jsp
10) http://www.bugtrac.com

If you have more that you would like to share…please do!
Thanks!

Keeping Track of your SSL Certificates

2009-10-21T08:12:00.001-07:00

Someone asked me about this today, so i decided to post it.

Many organizations are looking for a way to track and know when their SSL certificates are about to expire. in Come VerifySSL.

VerifySSL is a free tool, that tracks SSL Certs and tells you when the certs are about to expire…

take a look at the easy to use UI…

Hope you find this useful…

Forefront Protection Manager ("Stirling")!!!

2009-10-20T15:13:00.001-07:00

Stirling is almost here, after waiting for this new innovative product from Microsoft (Originating in MSReseach), our wait is about to end.

Imagine a central system; consolidating all your potential threats coming from all the elements of the Forefront Security suite, Microsoft calls this Security Assessment Sharing (SAS) where each individual component has an agent that uses analytics to generate security assessments.

As you know the forefront suite, consists of Client Security, Server Security (for Exchange, Sharepoint, OCS), TMG (ISA Next) and UAG (IAG Next)…all these components report to the central concentrator for correlation and response. With the addition of NIS (Network Inspection System) into the mix, this is looking to be an excellent addition to an organizations SIM / SOC.

Once an attack is suspected or actually happens, the system can notify or take action! Being empowered to take action and to mitigate attacks that stem in protocol and OS vulnerabilities immediately, giving you the needed time to update your systems.

Take a look at some of the reports that “Stirling” can provide:

Technorati Tags: Stirling,Forefront Protection Manager,IAG,UAG,ISA,TMG,NIS,SIM,SOC,SAS,Assesment

Network Inspection System (NIS) in Forefront TMG Release Candidate…we’re almost there!

2009-10-19T11:18:00.001-07:00

Just in from my good buddy Avi Ben Menahem in redmond…

Reblogged from http://blogs.technet.com/isablog/archive/2009/10/18/network-inspection-system-nis-in-forefront-tmg-release-candidate.aspx

TMG Community,

We are pleased to announce that the release candidate (RC) update for Forefront Threat Management Gateway (TMG) will include several important developments for the Network Inspection System (NIS), the signature-based part of the Forefront TMG Intrusion Prevention System:

The NIS Engine can now be updated dynamically, in conjunction with NIS Signature set update, which allows us to introduce, over time, support for a wider range of protocols and protection scenarios.
We have completed development of traffic parsers for the most common protocols: HTTP, DNS, SMB, SMB2, NetBIOS, MSRPC, SMTP, POP3, IMAP and MIME, thus supporting comprehensive Web, mail and file sharing protection scenarios. These protocol decoders lay the foundation for signature development and rapid response by the Microsoft Malware Protection Center to newly discovered threats.

Please make sure to upgrade your Forefront TMG beta deployments to the Forefront TMG RC release. In this release, NIS signature updates, including the dynamic engine update, will be available through Microsoft Update. We will no longer support NIS signature updates to earlier beta versions once the RC is released.

Technorati Tags: NIS,Network Inspection System,Forefront,TMG

Protecting and Defending Your Virtual Environments…

2009-10-19T09:34:00.001-07:00

hey there,

Every organization I know has a certain percentage of their computing systems already on Virtual environments. I just uploaded 2 great documents that provide insight on how to start protecting the virtual world…take a look:

http://www.msecurity.net/_Uploads/dbsAttachedFiles/Tripwire_Virtualization_Control_WP.pdf

http://www.msecurity.net/_Uploads/dbsAttachedFiles/Tripwire_Enterprise_VMware_DS.pdf

Hope you find these useful…C U Soon…

Talsa

Technorati Tags: Virtual,Virtualization,Tripwire,eSX,VMWARE

Another Reason you might want a smartcard Management system…

2009-10-19T08:55:00.001-07:00

Technorati Tags: FIM,Smartcards,PKI,Biometrics,Talsa,tal,Sarid,www.msecurity.net

Soooo, where were we?....another key benefit of FIM-CM, is that the system can provide detailed reports on your smartcard deployment. FIM-CM provides 3 types of reports that are really key in a smartcard deployment:

· Summary Reports - graphical summary of certificate lifecycle usage information

· Detailed Reports - granular information on certificate / smart card lifecycle usage

· Settings Reports - configuration and settings of certificate or profile templates

Reports help you keep track of what, who, when and where… smart card configuration reports, smart card deployment and tracking reports. For example, let’s say you want to find out who has been provisioned with a smart card for login access, what is their certificate usage, when are they due to expire? All these questions can be easy answered with the reporting capabilities of FIM-CM…

BTW, all certificate lifecycle activity logs and auditing information is stored in SQL Server repository if you really have a need for any custom reports, they can be pretty easily developed using SQL Server Report Manager.

So as “they” say knowing and keeping track and constantly measuring is a key way to ensure success…

Locking down your systems with Forefront Identity Manager 2010 Certificate Management

2009-10-18T14:56:00.001-07:00

Technorati Tags: ILM,FIM,Certificates,Tal,Talsa,PKI,Identity Management,Microsoft,Forefront,www.msecurity.net,smartcards

As you know, Microsoft is getting ready for the next wave of information security products. One product that we have been waiting for is FIM – forefront Identity Manager, formerly known as ILM (Identity Lifecycle Manager). FIM has two main functions…the first is classic Identity management…you know…Provisioning, de-provisioning, Connecting your directories and user repositories and making sure that everything is consistent.

The second function is certificate management. There are many certificate management scenarios that organizations want to manage and deploy.

For example, smart card logon, DirectAccess with Windows Server 2008 R2, secure remote access (VPN), secure messaging (S/MIME), secure web access (SSL), document signing, wireless LAN authentication and file & hard drive encryption.

Let’s take the example of smart card login, which provides organization, the ability to securely identify a trusted entity accessing their systems. This is often referred to as two or three factor authentication. Something you have (the smartcard), something you know (the PIN) and something you are (in the case of Biometrics).

So how can FIM help us? FIM-CM provides certificate management capabilities, such as configuration and provisioning of the smart card to support smart card logon (BTW, of course these cards can have physical access abilities, Magnetic Strip, Java apps, and more). FIM gives us an easy to use portal that enroll users and user accounts with smart cards, manages smart cards and the certificates once users are enrolled. And finally, when a users leaves, FIM also handles the de-provisioning of the card to revoke access.

As we get closer to the launch and moving forward, I’ll share with you my discoveries along the way…

C U Soon,

Talsa