One of the things I like to do when interviewing job candidates is to ask them questions about the world of fraud. I don’t expect them to prove that they’re certified fraudsters when they come in, but it can flesh out many paradigms that the candidates may already have. For example...

Last week, Andrea Pellegrini, Valeria Bertacco and Todd Austin published "Fault Based Attack of RSA Authentication" (I'll call it FBARA here for ease of reference) as I was boarding a plane to return from...

See what people are saying about this year's RSA Conference.

I met with a customer the other day who said that they aren't allowed to talk about the cloud without making a small, open palm gesture, moving the hand in a circle. It was funny when he did the little motion, and the reason for the humor is...

Click to Download/Listen

The Speaking of Security podcast team is on-site at RSA Conference in San Francisco. Learn about how EMC and RSA, along with VMware and Intel are collaborating on a Proof-of Concept for business-critical security, compliance and control in the cloud. We also discuss a new RSA Security Brief that presents an executive-level overview of the challenges involved.

It's the first day of the RSA Conference 2010 [link], and the show is about to start. Our own first announcement today is on a new set of...

Well, we’ve spent the last few weeks discussing what tokenization is and why it hasn’t had a bigger impact to date. Today I thought I’d talk about what tokenization could potentially mean to the merchant community if done correctly.

The RSA Conference is probably the busiest week of the year for me. My trip to San Francisco is filled with fantastic keynotes, in-depth session, lots of meetings, expo floor strolls and of course a happy hour or two (or three). The only thing missing from a killer conference is of course...