What’s common sense when it comes to minimising the risk of employees spreading critical information to rivalling companies? As of today, it’s clear that not even the US government and military can be sure that their data stays safely within their doors. Thereby I understand that my question probably instead should be written as “What is common sense to make it harder for employees to spread business critical information?” If anyone would want to spread [...]

I am new to the hosting in datacenter. I would host my app in a datacenter (colocation). I can sell me only the bay I need. I would like to use a SSL reverse proxy : SSL Reverse proxy + LoadBalancer <—-> WebServer1 <—-> WebServer2 If I let the SSL Reverse proxy do all the SSL job, everything between web servers and load balancer will not be secured. My question is : since I will [...]

SUMMARY I have a third party requirement to run an operating system from a remote secured disk. The user is concerned about hard disk security but is not concerned about the risk to the remaining hardware. At this stage I am not aware which OS they are running or indeed any restrictions on which OS is required so I am looking for a variety of suggestions. Applications tend not to allow installation over mapped drives [...]

We’re looking at replacing our campus-wide magnetic swipe card system with something more robust. The “programmer” side of me says there’s got to be an open-source, scalable solution that already does this, but all I’ve been able to find are proprietary vendor-specific solutions. Ideally, it’d have the following: Based on some open standard that allows us to select from a wide selection of card readers (like IMAP or HTTP) Support different kinds of card access [...]

What can you use for theft-proofing portables aside from a Kensington lock, or a secure computer cabinet? Or have you had good results from using the former? Alternatives / supplements to a Kensington lock: locks that go into another slot, such as the Targus Video Port Lock. physical plates to attach it to a table a conspicuous laptop asset tag or you could try this cunning product! Check more discussion of this question. Bookmark on [...]

Does anyone have experience with network cams used for security purposes? I need to monitor a remote location (server room) from both the local network and the internet preferably. I also need the ability to record-on-event (such as motion detection), run a process on event (such as email me), and capture stills. Additionally I need an interface that will allow 2 or 3 users to view the feed simultaneously. Are there other features that I [...]

I wanted to know if anybody had any recommendations as to how to keep the server room secure from employees. There is a lock on the door, however, anybody with a building master (maintenance, owners, custodians, etc) can open it. It would be nice if it required the key and also had a proximity card lock so that we could log entry and restrict it further. Has anyone done this before? What are some other [...]

I`m trying to find resources about Side Electromagnetic Radiation of computer ports, data bus, or any other channel, which can carry valuable information, and how it is possible to sniff this information, and then protect ports. What vulnerability exists, maybe some classification, methods of protection. Start by Googling “tempest attacks” The canonical TEMPEST attack is to pick up the EM radiation from the CRT as it paints the picture so that the eavesdropper can recreate [...]

We are creating a web application that will be installed on a server and sold to a client, similar to a Google Mini Search appliance. We are looking at various ways to secure the server from being breached and the source of the application stays safe. The client will access this from a web interface, again like Google Mini. Is there other ideas I am missing here to lock this down? Hardware: No floppy disk, [...]

An organisation that I do work for has made the decision to move several public access terminals (Tower/Monitor/Keyboard/Mouse combo) into a public place. These machines are already secured with change preventing software (either DeepFreeze or SteadyState) but will now live in a publicly accessible area with minimal observation. What are the best ways to physically secure machines like this against theft? Are there any additional software security mechanisms which should be considered? What about securing [...]