Meeting some academics today to see if we can place a student. Often they are interested in crypto and IDS. In the real world crypto is bought as a peer reviewed API and IDS is a rack mount appliance . The challenges in industry are funding, education and doing the boring but important things right like risk analysis , software QA ,secure configuration and compliance. Hey i do do some activities in web application security assessment that researchers would be familiar with, like basic cryptanalysis such as known cipher text attacks to break trivial "proprietary encryption algorythmns" that are really encoding and analysing the random ness of session ids.
----
Sent using a Sony Ericsson videophone
Google – Trying very hard NOT to be EVIL!?
12 hours ago
1 comments:
It's interesting to think about the effects of maturity and on what you find interesting in info sec.
I can't imagine anything more boring then doing IDS stuff, I would much rather be doing risk assessments :D
Post a Comment