The near final draft of the NIST Cloud Computing Standards Roadmap has been posted. I submitted a lot of updates and this paragraph stood out to me in particular: Auditing is especially important for federal agencies and “agencies should include a contractual clause enabling third parties to assess security controls of cloud providers” (by Vivek … Continue reading NIST Cloud Computing Standards Roadmap
An uninspired solution to bicycling risk has been proposed for San Francisco’s Golden Gate Bridge On a busy day: as many as 6,000 bicyclists and 10,000 pedestrians use the sidewalks Over the last 10 years, there have been 164 reported bicycle-involved accidents that produced 178 injuries, 119 of those injuries were serious enough to require … Continue reading Bicycle Speed Limit on Golden Gate Bridge
Jose Nazario provides an excellent summary on the Arbor blog of a bot that spreads via USB and instant messenger. He starts with a note on anti-Sino bias often found in American security analysis. Lest you think all of the DDoS bots we focus on come only from China, we found one that appears to … Continue reading Skunkx DDoS Bot Nationality
The U.S. Department of Justice (DOJ) in 2010 issued its final ruling on standards for accessibility under the Americans with Disabilities Act (ADA). New guidelines affect ATM physical access, communication, features, and privacy controls. Same level of privacy for all types of input/output Speech and Braille enabled Speech capable of being repeated or interrupted All … Continue reading 2010 ADA Standards for Accessible Design (and Privacy)