February 25, 2004 (IDG News Service) --
SAN FRANCISCO -- A panel of distinguished cryptographers at the RSA Conference here weighed in on a variety of hot button issues, including electronic voting and rights management for digital media. Speaking at the annual Cryptographers Panel on Tuesday, Ronald Rivest, co-creator of the RSA encryption algorithm, backed calls for paper ballots to supplement insecure electronic voting technology, while fellow luminaries Paul Kocher and Whitfield Diffie predicted heated battles between privacy advocates and intellectual property owners over the issue of digital rights management. Rivest cited recent analysis of Diebold Inc. electronic voting systems after a leak of the source code for those systems as evidence that such systems were inadequate to ensure the authenticity of votes cast. Analysis of the Diebold source code showed that the company's programmers failed to use accepted authentication methods to secure voting data and cast doubt on the ability of Diebold or other companies to patch the code in time to guarantee the results of approaching elections, including this year's presidential elections, he said. To ensure the outcome of elections where electronic voting kiosks are used, municipalities should implement voter verifiable technology that would produce a paper copy of each ballot that is cast, Rivest said. Speaking to an audience of fellow cryptographers and security experts, Rivest cautioned against the "digitizing" of votes. "We know only too well the difficulties of securing complex electronic systems," Rivest said. Technology companies and municipalities should "go slow," and "keep it simple," relying on paper ballots and audit trails to verify the data collected by electronic voting kiosks, he said. Speaking after Rivest, Kocher, president and chief scientist of Cryptography Research Inc. cited "failed economies" in a number of areas of technology adoption that are causing pain for corporations and ordinary computer users. The inability of entertainment companies to control the technology used to play their products -- music and movies -- has resulted in a flood of piracy that's hurting those companies, Kocher said. Similarly, the way e-mail is sent and received makes it easy for spammers to flood users' inboxes with unsolicited messages, he said. The technology community and the private sector need to address those issues if they want to solve problems like piracy and spam. Failing that, government regulation may be needed to mandate security standards, he said.
Concerns about piracy and terrorism may spell the end of computers and computer networks that are entirely controlled by their owners, said Diffie, chief security officer at Sun Microsystems Inc. The ongoing battle between entertainment companies and their customers over digital duplication of songs and videos and the federal government's desire to tap into data sent over
"Yes, NASA has confirmed that some laptops taken to the International Space Station were infected with an online-gaming password stealing..."
Read more...
"Linux is more secure than most operating systems, but Not if you don't practice basic security measures..."
Read more... Read more Security posts or See all Blogs
Netbooks, ultraportables, mini-notebooks whatever you call them, they've been grabbing headlines. Are they here for the long term or just a flash in the pan?
From Laggard to Leader: Transforming the Data Center
From Laggard to Leader: Transforming the Data Center Register for this complimentary live webcast today! Go to the webcast
Computerworld Executive Bulletin: Building a Robust Antivirus Defense
Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs. (Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more. Download this executive briefing
Online Security Issues in Regulated Industries
Download this research paper, free for a limited time, compliments of Webroot! (Source: Webroot Software) In June 2008, Computerworld invited IT and business leaders to participate in a survey on online security initiatives at their organizations. The goal of the survey was to better understand Web and e-mail security issues faced today within the regulated education, financial services, government and health care industries. The following report represents top-line results of that survey. Download this white paper
White Papers
Read up on the latest ideas and technologies from companies that sell hardware, software and services.
Security Management Zone
Security management is the process of developing a comprehensive data protection plan. It takes into account all potential threats, the existing network environment, the future needs of the organization, and lays out a multi-tiered blueprint to integrate the security technology needed to combat these threats. CDW can help keep your network and data secure.
Visit the CDW Security Management Zone nowSee All Zones
Fired up about IT?Join Sharkbait and share your true tales of IT. SharkBait is the place for you to sound off about everything IT the good, the bad, and the rest of the weird stuff you deal with every day.
In Security Stripping away the trappings of applications, systems and networks, information is the core asset of most organizations. Our columnist describes how asserting the importance of information governance is crucial to making that asset tangible, addressable and protected.
Click here to read the latest column by Jon Espenschied