Technical Security Standards

Portable Devices Configuration Standards

Portable Devices Configuration Standards:  This document establishes all the technical security standards that must be met to properly enforce the modified Acceptable Use Policy and high-level IT governance policy as well as, of course, the Portable Devices Security Procedur...

Agenda for Configuration Standards Meeting

Agenda for Configuration Standards Meeting: This document is intended to help your technical team walk through the issues that must be understood before implementing BYOD and MDM (mobile device management) controls. It includes documentation such as how to tell if a device h...

Third Party Patch Management

Vulnerabilities come in all shapes and sizes and while operating system patch management has largely been simplified with tools like WSUS, there is still a high degree of risk due to many popular third party applications and the lack of any centralized patching mechanism for...

Managed Intrusion Prevention and Detection

Preventive Control: IPS infotex uses an automated Intrusion Prevention Service that responds to predictable attacks within seconds. We get our signatures from Emerging Threats Pro, which reportably catches double the amount of malware, 20% more “exploits”, and about 10% more...

Dynamic ACL Updating

Dynamic ACL Updating Dynamic ACL Updating is a type of access control list, or IP traffic filtering feature, that relies on telnet connectivity, authentication and extended ACLs. This can be used in conjunction with other standard access lists and static extended access list...

Bleeding Snort

BleedingSnort is now EmergingThreats Staying at the Edge of Day Zero Threats and Vulnerabilities infotex has always been concerned about making sure that our managed services can address Day Zero threats and vulnerabilities. In this aspect, we have been a leader in the indu...

Web Application Security Reviews

According to the National Vulnerability Database and nCircle VERT (Vulnerability and Exposure Research Team), Web application vulnerabilities have increased from 1.9% of all published vulnerabilities in 2006 to over 52% in 2009. Meanwhile, even seemingly “benign sites” like ...
Having made the decision to “outsource” or to “get more professional help,” the next decision you need to make is this:  Are you really willing to hand over the important monitoring function to a cookie-cutter approach?  When you do your homework, you will find that infotex ...

Change Management and the Facebook Development Team

If you, like me, have been “sucked in” to the Facebook craze, you’ve also recently been reading a LOT of posts about the new Facebook interface.  Even the tag clouds on Google and Twitter show Facebook complaints as a leading conversation trend. In fact, I chimed in on the c...

GSM Encryption Broken

A German computer engineer, Karsten Nohl, has deciphered and published the secret code used to encrypt most of the world’s digital mobile phone calls. The now aged 64-bit G.S.M (global system for mobile communication) encryption introduced in 1988 is still providing p...