Security —
It’s time for Philly’s premier emerging tech conference, and I’m going to be speaking once again this year. The conference, Emerging Technologies for the Enterprise, is taking place March 26-27, 2008 in Philadelphia.
I’ll be giving a more technical talk this year than last, combining my interests in leading-edge web applications and security. The talk […]
There is a growing trend in consumer web applications in which one site will ask users for their usernames and passwords on other sites. Using these credentials, a site will log onto the other sites to carry out actions on behalf of, and hopefully with the informed consent of, the user.
‘On behalf of’ logins
LinkedIn and […]
I’d like to throw out an idea for discussion, especially as it applies to startups selling into the enterprise:
Small buyers of technology, acting early in the technology adoption life-cycle, are motivated by hope (hope == ROI, opportunity, etc). Large buyers of technology, acting late in the life-cycle, are motivated by fear (fear == risk of […]
Each generational transition in IT, such as from mainframe to client server or from client server to web applications, has presented challenges to enterprise security. The pattern is clear, and will likely sound familiar to anyone working in IT through these last two major shifts:
The emerging technology is initially ignored as a lab project or […]
It has always been hard for the enterprise to address emerging information security issues proactively; usually these things end up dealt with by the majority of companies once a loss has hit close to home or regulatory attention has been brought to bear. I was lucky to be able to work with some very smart […]