Meeting some academics today to see if we can place a student. Often they are interested in crypto and IDS. In the real world crypto is bought as a peer reviewed API and IDS is a rack mount appliance . The challenges in industry are funding, education and doing the boring but important things right like risk analysis , software QA ,secure configuration and compliance. Hey i do do some activities in web application security assessment that researchers would be familiar with, like basic cryptanalysis such as known cipher text attacks to break trivial "proprietary encryption algorythmns" that are really encoding and analysing the random ness of session ids.
----
Sent using a Sony Ericsson videophone
About Me
- Matthew Hackling
- Matt runs his own security consultancy called Ronin Security. His focus is information security management and he has a keen interest in infrastructure and web application security. He's a CISSP and the current Branch Executive of the Melbourne chapter of the Australian Information Security Association.
Labels
- AISA (1)
- australian information security market (1)
- career advice (1)
- causes (1)
- DoS (1)
- economics (1)
- FUD (1)
- futurism (1)
- information security governance (4)
- IPS (1)
- privacy (2)
- sacred cows (1)
- security patching (1)
- vulnerability management (1)
Tuesday, March 3, 2009
Subscribe to:
Post Comments (Atom)
Handy Links
Twitter Updates
Matt's list of blogs
-
Dear America – How much is the tip?3 weeks ago
Blog Visitors
Lijit
InterSec - ISC2 CISSP networking portal
1 comments:
It's interesting to think about the effects of maturity and on what you find interesting in info sec.
I can't imagine anything more boring then doing IDS stuff, I would much rather be doing risk assessments :D
Post a Comment