Capella has been designated a National Center of Academic Excellence in Information Assurance Education (CAEIAE) by the National Security Agency and the U.S. Department of Homeland Security. Capella’s information security curriculum meets the NSA Committee on National Security Systems standards 4011, 4013, 4014.
This center provides access to resources, tools, and the latest information regarding information assurance as a way to enhance understanding in this field of study.
The NSA’s Information Assurance Courseware Evaluation (IACE) Review Committee has validated that Capella’s information security curriculum meets the Committee on National Security Systems (CNSS) National Standards 4011, 4013, (and 4014 coming). Learn what this means to a Capella learner.
It seems that iPhone hacks are one of the most publicized hacks coming out of Black Hat so far this year. Black Hat seems to be a ‘performance’ platform for hackers to get a fair amount of attention for their exploits. The age old argument comes to mind. READ ON
Subscribe to comments via RSS 2.0 
According to a recent news article, "Contractor Seeks ‘Cyber Warriors’ to Help Defend U.S." Raytheon is looking for some good security people. An excellent quote in the article states,
"We’re looking for those individuals who understand the inner workings of computer systems and software, who understand the interaction between hardware and software down to the nitty-gritty," he said. "Not people who’ve specialized in high-level computer languages." READ ON
Subscribe to comments via RSS 2.0
According to a federal report, the U.S. is suffering from a shortage of cyber experts. Several reasons include the hiring process, certifications, and insufficient training, and that a federal workforce is needed. However, it is difficult to assume that this shortage of cyber experts leads to an increase in attacks, as the article suggests. We are all familiar with shortages, e.g., nurses, primary doctors, etc., but in this case would a shortage of cyber experts cause a real problem for the U.S. READ ON
Subscribe to comments via RSS 2.0
A 2005 paper on a distributed security framework by Susan Brenner and Leo Clarke has recently been getting a lot of attention on the blogs. Both Bruce Schneier and Michael Kassner have recently commented on the efficacy of this approach to information security that professes to take a more proactive approach rather than the typical reactive stance that is too common in the security industry. Included in this paper is discussion about international cybercrime treaties, the use of police recruiting of civilians in fighting cybercrime. The authors also suggest the idea that it would be illegal to gain access to the Internet except through a licensed ISP.
What do you think about this proposed framework for information security? Why do you think it has only now gained the degree of attention that it seems to be recently experiencing? Share your thoughts.
Check out the paper and link to Kassner blog and to Schneier blog here.
Subscribe to comments via RSS 2.0
My recent post on the decentralized denial of service attacks against (primarily) government sites in the US and South Korea included some discussion on the role of zombies or bots in contributing to the success of these kinds of attacks.
Commtouch, in their Q2 report on Internet Threat Trends, demonstrates that this problem of large numbers of computers that are under the control of hackers, continues to grow.
What can the information security profession contribute to society in terms of helping to reverse this obviously dangerous trend? Share your thoughts.
Subscribe to comments via RSS 2.0
MSNBC is one of many news sources that today reported on a widespread and sophisticated set of denial of service attacks that interrupted service for a number of South Korean and US government and business related Web sites. The South Koreans are reported to believe that the source of the attacks is coming from North Korea however that has not yet been proven conclusively. The attack itself appears more designed to annoy and interfere with public Internet sites than as a serious threat to secure assets. It does point out however, that these attacks suggest a focused, concentrated and serious effort, possibly backed by some governments, including the US, to coordinate resources with the objective of using Internet interruptions as a way of disabling or putting another country at a disadvantage.
Let us know what you think of these activities and what should be done about them, if anything?
Subscribe to comments via RSS 2.0
Capella University offers several degree programs which specialize in the information assurance and security field. Visit one of the links below for more information.
To learn more about Capella, please visit http://www.capella.edu or call 1.888.CAPELLA, option 2, to speak to an enrollment counselor.
