-
Dec 23, 2013
Tips From the Pros: Best Practices for Managing Large Amounts of Shared Data
In our “Tips from the Pros” series, we’ll be the presenting interviews we’ve conducted with working IT professionals. These are the admins and managers responsible for security, access, and control...
David Gibson
3 min read
-
Nov 07, 2013
How to Discover and Protect Data at Scale
Discover how to protect high‑value intellectual property at scale with a unified approach to data discovery, classification, and automated remediation.
Nolan Necoechea
3 min read
-
Sep 30, 2013
What is Human Generated Data?
Unlike business application data, like a billing database or CRM system, or machine-generated data, such as the log files that servers generate, human-generated data is comprised of the emails, Word...
Rob Sobers
1 min read
-
Jun 11, 2013
The Dangers of Shared Links
Many web applications give users the ability to share private information with unauthenticated users via obscure, publicly accessible URLs. These URLs, often called “external links” or “shared links,” are a...
Rob Sobers
4 min read
-
Feb 04, 2013
Is DNA Really Personally Identifiable Information (PII)? No. Maybe? Yes!
Biometric data is at the limits of what current personal data privacy laws consider worthy of protection. This type of identifier covers fingerprints, voiceprints, and facial images. While the risk...
Michael Buckbee
3 min read
-
Dec 11, 2012
Using Varonis: Who Owns What?
The key difference between attempting to assign data owners manually and attacking it intelligently with Varonis is the DatAdvantage audit trail.
Brian Vecci
3 min read
-
Aug 14, 2012
The Definitive Guide to Cryptographic Hash Functions (Part II)
Last time I talked about how cryptographic hash functions are used to scramble passwords. I also stressed why it is extremely important to not be able to take a hash...
Rob Sobers
2 min read
-
Aug 08, 2012
Lessons Learned from Mat Honan's Epic Hacking
” Password-based security mechanisms — which can be cracked, reset, and socially engineered — no longer suffice in the era of cloud computing.” If you haven’t read Gizmodo writer Mat Honan’s...
Rob Sobers
4 min read
-
Aug 02, 2012
The Definitive Guide to Cryptographic Hash Functions (Part 1)
Give me any message and I will create a secret code to obscure it. Try it! “This really opened my eyes to AD security in a way defensive work never...
Rob Sobers
3 min read
-
Jul 03, 2012
The Difference Between Everyone and Authenticated Users
In order to maintain proper access controls, it’s crucial to understand what every entity on an access control list (ACL) represents, including the implicit identities that are built into a...
Rob Sobers
2 min read
-
Jun 05, 2012
SharePoint Permissions Cheat Sheet
Complexity is dangerous in the security world. The harder something is to understand, the harder it is to protect. SharePoint falls squarely into this category. Configuring permissions in SharePoint can...
Brian Vecci
2 min read
-
May 03, 2012
Exchange Journaling and Diagnostics: How to
Journaling and Diagnostics Logging are services to monitor and audit activity on Microsoft Exchange servers. They provide basic auditing functionality for email activity (e.g. who sent which message to whom)...
Rob Sobers
2 min read