The Core Components of the Entrust PK...
Detailed introduction to the architecture of the Entrust PKI v5
The role of IT security in relation to IT and Business.
How much is enough? A Risk Management...
The wonderful thesis of Kevin Soo Hoo tracing the history of risk assessment in computer security, and presenting a modern way forward (100 pages, ...
IBM proposal for a data centric approach to IT security.
The current draft of ISACA's IT Risk Framework - quite comphrehensive at nearly 100 pages.
Strong CAPTCHA Guidelines v1.2
An introduction to developing secure CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart)1 systems. In addition to ...
Web Application Security Consortium: ...
The Web Security Threat Classification is a cooperative effort to clarify and organize the threats to the security of a web site. The members of th...
Fast Dictionary Attacks on Passwords ...
Human-memorable passwords are a mainstay of computer security. To decrease vulnerability of passwords to brute-force dictionary attacks, many organ...
A 2009 Black Hat presentation on security risks inherent in cloud computing.
NIST Statistical Test Suite for Pseud...
A large collection of statistical tests from NIST for verifying the properties of random number generators and their applications (updated 2008).
2009 Encryption and Key Mgmt Benchmar...
Data protection is an exe rcise in risk management. / Adequately protecting dat a and managing compliance / must be balanced with ope rating efficiency ...
Quantum Computing and Quantum Cryptog...
An Entrust 2005 whitepaper on the implications of quantum computing and cryptography.