Verizon Incident Sharing Framework
March 14th, 2010 admin
Earlier this month Verizon Business announced their Verizon Incident Sharing Framework (VerIS framework). This document is a means to describe digital security incidents, using four main groupings: 1. Demographics, 2. Incident Classification, 3. Discovery and Mitigation, and 4. Impact Classification. The idea is to provide a framework that incident investigators can complete for every digital security incident. Using the output, security teams can better identify trends and make recommend improved security strategies and tactics. For example, Verizon builds their Data…
Related Videos from Youtube
phone security and cybersecurity ar...taosecurity.blogspot.com another of my two in one videos but this time i want to say to my subbers, that i will protect you guys from hackers, whenever i can in any form, cell phone security or pc i'm here for you guys and the youtube cominuty at large....
is prillo a nice security person or...geeks.pirillo.com i wouldn't mind if i got more subscribers who can watch my videos and i could help them in a friendly way and a good way, i'm not like prillo in any way i don't get mad at hateful comments etc taosecurity.blogspot.com
Zombie aware month.......avi...blog.fortinet.com come on join me and help in the fight against pc zombies..... i will deffend the youtube comminuty against hackers...... taosecurity.blogspot.com
AFCERT circa 2000...This video shows the United States Air Force Computer Emergency Response Team (AFCERT) in 2000. Kelly AFB, Security Hill, and Air Intelligence Agency appear. The colonel who leads the camera crew into room 215 is James Massaro, then commander of the Air Force Information Warfare Center. The old Web-based interface to the Automated Security Incident Measurement (ASIM) sensor is shown, along with a demo of the "TCP reset" capability to terminate TCP-based sessions. We have a classic quote about a "digital Pearl Harbor" from Winn Schwartau, "the nation's top information security analyst." Hilarious, although Winn nails the attribution and national leadership problems; note also the references to terrorists in this pre-9/11 video. "Stop the technology madness!" Incidentally, if the programs shown were "highly classified," they wouldn't be in this video!
Verizon GRIDIRON...Realize that when you rule the air, anything is possible. Rule the Air.
Loaded: Google, Verizon in tiered-N...Google is shutting down its real-time messaging system known as Google Wave, the iPhone dev team releases a carrier unlock for jailbroken iPhones, and Google and Verizon are apparently near a deal to pay for tiered Web traffic in a blow to Net neutrality. cnettv.cnet.com
Verizon TOWERS...Verizon's signal. There to ensure the most powerful transmitter is you. Rule the Air.
First Look: Motorola Droid X (Veriz...Verizon added a new member to its Android army today and if you thought the Droid was a beast, then wait till you get a load of the Droid X. Check it out in our First Look. cnettv.cnet.com
Related Posts
My friend Alex Hutton and the rest of the RISK Team at Verizon Business have done it again! This time rather than release a report about breaches however, they’ve release the Verizon Incident Sharing Metrics Framework ( VerIS for short ). All the awesomeness that went into creating the 2009 Verizon Breach Report is being shared with...
I just read this great post by Rich Mogull titled FireStarter: The Only Value/Loss Metric That Matters . His basic argument, or at least the idea that I derived from it, is the following (all in my own words). So-called “risk managers” spend a lot of time imagining they can determine “annualized loss expectancy” by predicting...
Verizon is terminating internet service to an unknown number of repeat copyright scofflaws, a year after suggesting it was not adopting a so-called graduated-response policy. While it was not immediately clear whether other internet service providers were following suit, the move comes as the Recording Industry Association of America and the Motion...
A blog reader emailed the following question. We recently had a CISO change, and in the process of doing an initial ops review and looking at organizational structure, one of the questions the new CISO has is about the viability of offshoring incident response… I would be very interested in your views on this matter, and would appreciate...
In the security industry we like to fool ourselves into thinking that we can materially impact an organizations security posture. We believe that new tools, a new framework, a new regulation, a new school of thought will lift the veil of organizational ignorance and enable us to attain the state of enlightened security practitioner. But as
Read More →
Related Tweets from Twitter
|
wxs (Wesley Shields) : @taosecurity What benefit does daemonlogger get you? Only thing I see is deletion of old pcap files... Updated : 2010-09-10T19:09:53Z | Reply | View Tweet |
|
unixfool (Ronald Sinclair) : TaoSecurity: DualComm Port Mirroring Switch http://t.co/p779WdO via @taosecurity | very nice!.. Updated : 2010-09-10T19:05:58Z | Reply | View Tweet |
|
sophto_92 (Mohannad Shahat) : @taosecurity I hope I will be there and attend your class. Very interesting stuff.. Updated : 2010-09-10T18:38:06Z | Reply | View Tweet |
|
taosecurity (Richard Bejtlich) : @blackhatevents just posted my TCP/IP Weapons School 2.0 training link http://bit.ly/djb7GS for Abu Dhabi http://bit.ly/cdXmDE 8-9 Nov 10.. Updated : 2010-09-10T18:34:12Z | Reply | View Tweet |
|
|
taosecurity (Richard Bejtlich) : @RonGula Cool, let us know what you think of it!.. Updated : 2010-09-10T18:30:24Z | Reply | View Tweet |
Related News from Digg
Leave a comment
| Trackback
