lukeo's documents in Written By Me
Anonymity at the Edge
A retelling of a not-so-minor scandal over the exposure of passwords in the edge nodes of the ToR anonymity network.
The Rise of Whitelisting
A short essay on the rise the idea of whitelisting to block detect and block malware.
The Sub-time Crisis in Web 2.0
A short note on why we fear general information overload in web 2.0, however the system will live on.
Outline of a book on Passwords
Here is an outline of a book I started to write in 2003 on passwords. At the time I had a few months away from work and I decided to return to some basics in security, and I started with passwords ...
A Hazard Model for Tornado occurrence in the US
A paper on Monte Carlo (MC) modeling of tornado occurrence in the US. The paper shows how to work through from data, to modeling via MC to produce results.
IT Security Awareness Tips
Here are the slides from my talk on tips for IT Security Awareness given at an ENISA conference in June 2009.
A Short Primer on the Birthday Paradox
A short introduction to the birthday paradox with comments on a recent application in DNA matching.
Some Black Swans in IT Security
A selected collection of surprising Black Swan events that have impacted IT Security over the last 50 years.
ANSI approach to the financial impact of cyber risk
A short overview of a recent question-driven dialogue approach to cyber risks as proposed by ANSI.
Parsing SOX into Pictures
A parsing of several sections from SOX into conceptual diagrams using subjects, objects and actions.
Entropy Bounds for Traffic Confirmation
A mathematical analysis of degrading anonymity in open systems.
The Core Components of the Entrust PKI v5
Detailed introduction to the architecture of the Entrust PKI v5
Shamir's Third Law and other Tales from the Crypt
An overview of three attacks that bypass strong cryptography.
