Tuesday, March 3, 2009

Academia and security

Meeting some academics today to see if we can place a student. Often they are interested in crypto and IDS. In the real world crypto is bought as a peer reviewed API and IDS is a rack mount appliance . The challenges in industry are funding, education and doing the boring but important things right like risk analysis , software QA ,secure configuration and compliance. Hey i do do some activities in web application security assessment that researchers would be familiar with, like basic cryptanalysis such as known cipher text attacks to break trivial "proprietary encryption algorythmns" that are really encoding and analysing the random ness of session ids.

---- 
Sent using a Sony Ericsson videophone

1 comments:

Christian said...

It's interesting to think about the effects of maturity and on what you find interesting in info sec.

I can't imagine anything more boring then doing IDS stuff, I would much rather be doing risk assessments :D

Infamous Agenda © 2008. Design by :Yanku Templates Sponsored by: Tutorial87 Commentcute
This template is brought to you by : allblogtools.com Blogger Templates