RSS FeedBlogs

Unscrewing Security

Alec Muffett

Recent Posts

RSS FeedSubscribe to this blog
About Author
Alec Muffett

Alec Muffett is a veteran security geek who believes strongly in common sense, full disclosure, defence in depth, privacy, integrity, simplicity and open source. He is an independent consultant, writer, and speaker specialising in security education.

Nominet: a website, by any other name, would be more secure?

Nominet propose to allow domain names directly under ".uk"; this is better?

by Alec Muffett

So Nominet - the people who own, manage and monetise the top-level .uk DNS domain - propose to allow creation of domain names directly under the UK suffix (PDF). Thus instead of you could instead own

October 05, 2012 2:59:53 PM Read Full Post

Why is nobody crowing about 'Critical National Infrastructure'?

O2 went dark; RBS/NatWest/Ulster Bank died. Surely the Government ought to tell us what to do?

by Alec Muffett

Much cybersecurity planning is couched in terms of we must protect critical national infrastructure - but when a bank goofs a software upgrade and commits transactional suicide for a week (or more, see Ulster Bank) - and when an entire phone...

July 12, 2012 11:45:29 AM Read Full Post

If it turns out that LinkedIn passwords have leaked...'s what you should do

by Alec Muffett

Rumours are circulating on the net that a database of hashes of LinkedIn passwords has been published on a Russian hacker site. I cannot confirm this but if the article referred to above is correct then there is a risk to LinkedIn users;...

June 06, 2012 12:31:26 PM Read Full Post

Chinese Cyberwarriors in your Chips?

Perhaps, but the Cambridge ones are more interesting

by Alec Muffett

The security interwebs this morning are alive with reference to Sergei Skorobogatov's webpage at Cambridge, the key quote from which is: We developed breakthrough silicon chip scanning technology to investigate these claims. We chose an American...

May 28, 2012 8:32:02 AM Read Full Post

Ask Alec: Security for Freelance Developers and SMEs

What do you do to be secure when you're on your own?

by Alec Muffett

So in my mailbox a few weeks ago there arrived the following: Hi Alec I was wondering whether you'd mind doing me a small favour. It'd be great if you could punt out a quick top 5 / top 10 tips for sensible data security practices for freelance...

May 22, 2012 3:26:44 PM Read Full Post

Cybersecurity: Demand An Evidence-Based Approach

Beware Secondhand Statistics; Beware Creating Them

by Alec Muffett

In the days before the SOPA blackout a popular meme infected the interwebs: Dear Congress: It's No Longer OK To Not Know How The Internet Works Directed at the US Government this article and its related discussion decried the creation of new...

May 08, 2012 11:34:31 PM Read Full Post

Still Scrambling For Safety

Time for old magic in the debate on CCDP

by Alec Muffett

Dateline: the late 1990s; in the USA and UK there is fear and debate over development of new technology which renders moot the "existing capability" of Government agencies to intercept internet communication - thereby risking intelligence (even...

April 12, 2012 9:33:51 PM Read Full Post

Surveillance? The Liberal Democrats aren't supporting it...

The Home Office wants to log with whom you communicate, wherever and however, just in case you're naughty - but the Liberal Democrats object...

by Alec Muffett

It's been a good few months for surveillance, its practitioners and its supply industry - barnstorming industry conferences, massive media coverage of technology and puff pieces on government projects stateside ... oh, wait, is this meant to be...

March 23, 2012 1:48:59 PM Read Full Post

Learning about Cybersecurity from an Unnatural World

Radio 4 on Security: Bio, Cyber or otherwise...

by Alec Muffett

I was listening to the rerun of File On 4[1] this evening, and a chap from the FBI said something very sensible about Cybersecurity. Albeit the programme itself was nothing to do with cybersecurity and its tone was mildly hysterical in...

February 13, 2012 12:00:24 AM Read Full Post

Digital Darwinism: Perspectives for Industry and Government

A term which will soon see greater use, but it would be nice for the nuances to be understood

by Alec Muffett

A few days ago I spoke on a panel at PICTFOR - the Parliamentary ICT Forum - some writeups of which have been posted elsewhere; but a few days prior in preparation myself and some friends had the opportunity to speak with PICTFOR Vice-Chair Eric...

February 10, 2012 1:35:32 PM Read Full Post

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message