Two leading network access control standards — TCG’s Trusted Network Connect (TNC) and Microsoft’s Network Access Protection (NAP) — will now interoperate, providing enterprises with simpler, more cost-effective, scalable, and interoperable endpoint integrity and network access control.
Read the rest of this entry »

• 0 Comments

The winter of 2004 brought with it a new opportunity for me. I began learning and programming in PHP and MySQL as an independent study and also for my job with both the admissions department and financial aid department of Eastern Washington University. My first bit of programming got off to a great start and it was when I was put in charge of developing a secure website that I began researching the topic of website security. I knew very little about how people hacked into websites to do various illegal activities, so I decided that some of the basic entry points into a website and its server needed to be addressed.
Read the rest of this entry »

• 0 Comments

This paper presents several methods of bypassing the protection mechanism built into Microsoft’s Windows 2003 Server that attempts to prevent the exploitation of stack based buffer overflows. Recommendations about how to thwart these attacks are made where appropriate. Introduction Microsoft is committed to security. I’ve been playing with Microsoft products, as far as security is concerned, since 1997 and in the past year and a half or two I’ve seen a marked difference with some very positive moves made. In a way they had to. With the public relations crisis caused by worms such as Code Red Microsoft needed to do something to stem the flow of customers moving away from the Windows OS to other platforms.
Read the rest of this entry »

• 0 Comments

Transparent Web Security:. Server-Gated Cryptography. www.yankeegroup.com.
Security Solutions & Services. by Phebe Waterfield CISSP. September 2005
Read the rest of this entry »

• 0 Comments