Adaptive Password Policies

Adaptive Password Policies

Stanford recently published a new security policy allowing their users to choose length over complexity.  Password complexity has always been the go-to answer for creating secure passwords. Of late, there has been a big push to change that; and for good...
Open Source Enterprise Security

Open Source Enterprise Security

My second presentation at BSides Orlando 2014 was on Open Source Enterprise security solutions. The idea was to present a number of tools to help the struggling small business meet enterprise security objectives.  It’s easy to forget that many (most?)...
Decoding the Air (SDR)

Decoding the Air (SDR)

Last weekend I gave a talk at BSides Orlando on Software Defined Radio. I wanted to do a tutorial on getting started with SDR rather than just showing all the cool stuff you could listen to (that’s what YouTube is for). All-in-all, I think it went well… The...

Know Your Environment! (IFE/EFE)

The cornerstone of any decision making process is to know the environment in which you work. However, “knowing” your environment simply is not enough – in terms of strategic management, anyways. What we need is a way to list these factors, rate them relative to...

A Real SWOT Analysis

A SWOT analysis is a great tool to understand your operating environment. However, misusing this tool can – at best – prove to be useless. This post is a quick introduction to the SWOT, how to use it, and how to get the most out of it! If you’re reading this post,...