Skip to main content

The WiKID Blog

The WiKID Blog, musings on two-factor authentication, information security and some other stuff.

Big Data vs Easy Data: The WiKID OSSIM plugin

Big data is all the hype right now, but what most companies need is not big data but easy data. The truth is that most average-sized organizations do not even monitor the logs that the collect. That's changing as log management and monitoring are required as part of PCI compliance. Enterprises need log management tools.

Local governments adopting two-factor authentication, but at what cost?

I found this article on local governments deploying two-factor authentication to be sadly typical. First, it's great that local governments are deploying two-factor authentication, even if it is forced by FBI CJIS security policies that require the use of two-factor ­authentication for remote access to the national criminal justice database. However, the article states:

The boy who cried "PWNAGE"!

Imagine a mono-culture where you can write in one programming language and one language only and it runs anywhere. Such a language makes life a lot easier for developers and software vendors. It also would make life easier for security people. Instead of worrying about the latest holes in PHP, Ruby, Python and Java, you only have to patch one. All the eggs are in one basket, but, man, are we focused on that basket.

The Phoenix Project

The short version: read Gene Kim, Kevin Behr & George Spafford's The Phoenix Project because it is a book you can't put down about IT services! Can you imagine?  That's really all you need to know.

How to not add two-factor authentication to your product

First, I want to say that I really, really support any application that adds support for two-factor authentication, especially if they do it right by using an open standard such as RADIUS.  That's why I was excited to see RADIUS support in VMWare View 5.1.  I decided to test it and add a tutorial to our growing collection.

Recent Posts







RSS / Atom