SECUNOID

Google recently released Googlewave.

I tried and it looks more like mix of email, blog, and IM.

The other catch is that it required the other users also have a google account to start using this capability. One more attempt by Google to gain more user base.

As for how secure the information is while hosted at Google, it probably gets stored for unlimited period of time and eventually becomes Google property.

Will post more after playing with it amongst my friends and see if it really makes sense or is just another nice to have shiny toy with a very short lifespan.

VOIP technology always intrigued me, so I decided that the only was to learn about it was try it out. So started surfing the web and some of the first searches on VIOP providers brought me to:

VOIP.MS: http://www.voip.ms

Callcentric: http://www.callcentric.com

I immediately created accounts as it does not cost any thing to create one, still was not sure what I was doing.

They were throwing terms like DID (Direct Inward Dial) and Termination.

DID is an incoming line which is assigned a phone number

The primary function of a cloud-based federation service is to authenticate users and facilitate SSO to business applications. Providers that play in this space are:
* Arcot Systems
* Clavid
* Cloud Identity
* FuGen Solutions
* Gluu
* Ping Identity
* ProtectNetwork
* SSOCircle
* Symplified
* TriCipher

Project Dogtag is an opensource version of Red Hat Certificate Server. It was released to public in late March, 2008, installs on Fedora8

From installation perspective a very straightforward install.

1. Installed Fedora8, default options
2. Followed instructions on http://pki.fedoraproject.org/wiki/PKI_Main_Page
3. I did not choose to compile, rather opted for compiled version
4. Installed the pre-requisites as the instructions on wiki said
5. Then proceeded with the instructions
6. Up and running in about 2 hours.

I would say try it out, and start using it.

• Dumpster diving - Searching through trash and recycling bins for personal information such as credit card statements, purchase recripts and income tax papers.
• Shoulder surfing - Confidential information such as your PIN or password can be stolen by ID theives who can look over your shoulder at and ABM or POS Terminal, or when you use a public computer, your laptop, your Blackberry or other devices in public places

• ISACA
• COBIT WIKI

Some References for ISO

• Yahoo Group: http://tech.groups.yahoo.com/group/iso-27001/message/281
• ISO27001 certification process: http://www.27000.org/ismsprocess.htm
• THe ISO 27000 Directory: http://www.27000.org/index.htm
• ISO Standards Translated into plain english: http://www.praxiom.com/

HIGH LEVEL CONTROL OBJECTIVESPlan and Organize

Public-Key infrastructure (PKI) is the integration of software, hardware, encryption technologies and services for managing public keys. PKI provides for the four basic requirements of a secure system:

• Confidentiality to keep information private.
• Integrity to prove that information has not been changed.
• Authentication to prove the identity of the sender.
• Non-repudiation, which ensures that the information originator cannot deny ownership.

How these requirements are acheived?

1. To find out the interfaces on your system, type: ifconfig -a
2. Lets assume your interface name is "pcn0"
3. Run "ifconfig pcn0 plumb"
4. Run "ifconfig pcn0 dhcp start" to bring the interface up and get a DHCP address (assuming you have a DHCP server for the subnet your host is on)
5. Create empty files named /etc/hostname.pcn0 and /etc/dhcp.pcn0
6. Reboot: shutdown -i6 -g0 -y