TechJabber.com

http://www.cioinsight.com/c/a/IT-Management/15-Essential-Spring-Books-for-IT-Leaders-147322/?kc=CIOMINUTE04062009CIO1

“Each season brings a slew of interesting books. This spring is no different. Works from consultants, academics and business leaders dominate the top offerings, covering topics like IT leadership, collaboration, IT careers, customer strategy and innovation”

WHAT: This year’s hottest new security innovation for laptops and PCs makes its appearance at the RSA Conference 2008 in San Francisco. Yoggie Security Systems^TM (exhibiting at booth #857) introduced a unique, ultra-portable mini computer that is a firewall solution to protect PCs from malicious attacks.

DETAILS: Yoggie Security Systems^TM (www.yoggie.com) is the first company to offload 12+ security applications onto an innovative USB key-size Linux-based 520 MHz security mini-computer with the company’s award-winning Gatekeeper Pico product. In addition to receiving the Best of Innovations award at CES, Yoggie has also received various awards from the RSA.

WHEN /

WHERE: April 9-10, 2008, Booth #857 in the Moscone Center

Michael Xie, founder and CTO, will present the trends and evolution in network security on April 9 at RSA Conference 2008. Attendees will come away from this session with a better understanding of the evolving network infrastructure and trend in security consolidation, threat research and defenses that anticipate future risks – and what it takes to protect today’s complex network environments.

Who: Michael Xie, founder and CTO, Fortinet

What: Discussion entitled “From Gopher to Google: Seven Security Trends in the Internet Age”

Session highlights include:

• An explanation of how network infrastructure is changing • An overview of the trends in network security • A checklist on how to securely move forward

When: Wednesday, April 9, 3:30 p.m., PDT

Where: RSA Conference 2008, Moscone Center, San Francisco, Calif., Executive Briefing Center in the Exposition Hall, booth 2603 (lower right corner of the show floor).

GO-Trust Inc. providing trusted security solutions for people on the go, launches new technology that enables manufacturers and developers of smart cards and smart card based security solutions to offer their applications on any mobile device that accepts a SD standard, mini or micro memory card, without any modification of the mobile device. Suddenly the mobile community and beyond are potential clients for chip based security solutions. The potential users include: Cell Phones, PDAs, Note Book PCs, Tablet PCs, Mobile TVs, Portable Ultrasound Units, Digital Cameras, Digital Camcorders, MP3/MP4 Players, Digital Picture Frames, GPS, Graphing Calculators, Wii Game System and much more.

Using the GO-Trust proprietary security/flash controller, firmware and a specially developed multi-platform SDK, existing applications can run unchanged in a mobile device and call the security module embedded in the SD memory just as if it was a regular sized smart card inserted in a USB card reader attached to a PC. In many cases the application can reside in the flash memory and be auto loaded as soon as the SD memory is inserted, making the operation totally transparent to the user.

The GO-Trust SD Solution is ready to ship today, so existing applications can be deployed to new clients immediately.

The launch of the GO-Trust SD Solution is taking place during the RSA Conference at 11:15am on Wednesday April 9th, 2008 in room 112 of Moscone Center North. Journalists, Analysts and technology watchers are all welcome.

About GO-Trust, Inc.

GO-Trust Inc. is a multi-national organization headquartered in Taichung, Taiwan and with subsidiaries in California, Hong Kong and Beijing. The company specializes in facilitating hardware based security solutions so manufacturers and developers can offer their products on new and diverse clients.

The management team have many years of experience in the development and marketing of security, components, hardware, middleware and software for major corporations including Honeywell, Connexant, SafeNet and Samsung.

Most recently the company has developed IC’s, firmware and drivers that enable smart card manufacturers to embed their technology in SD memory chips and operate seamlessly on a wide range of mobile devices. For additional company information, visit http://www.go-trust.com or call (714)-658-4445.

On April 7, 1983, SafeNet, Inc. was founded by two security engineers in Timonium, Maryland. Today, the Company celebrates its 25th anniversary as an information security leader.

“Twenty five years in the information security industry is an amazing achievement. We have succeeded through all kinds of economic environments, in a business that demands continuous improvement,” said Chris Fedde, SafeNet’s president and chief operating officer. “To make it this far the professionals at SafeNet have consistently delivered quality and innovation, and have always set industry and government standards for high grade security. We are grateful to our customers and partners for their support as we reach this milestone.”

As the demand for security advances, more industry experts, regulators and customers view encryption as one of the core elements needed to address demands for compliance and privacy. SafeNet’s most recent acquisition, Ingrian Networks, is in recognition of this need and adds award-winning database application protection to SafeNet’s information security suite. With this acquisition, SafeNet becomes the first vendor to offer a comprehensive Enterprise Data Protection Solution that secures sensitive data across devices, applications, networks, and databases.

Originally established as Industrial Resource Engineering (IRE), the Company made a name for itself selling enterprise network security solutions to protect the public and private networks of financial institutions. IRE expanded into the federal government sector and became a fast-rising star in the information security industry.

The Company was officially renamed SafeNet in 2001 after its award-winning VPN product line. Combining strong organic growth with a series of strategic acquisitions from 2001 to 2005, SafeNet increased its revenue by a multiple of fifteen and became the world’s seventh largest information security company.

In March of 2007, SafeNet was acquired for $634 million by Vector Capital, a private equity firm based in San Francisco, Calif. Today, the Company has more than 1,100 employees across 100 countries, including a technology base of 500 security professionals. Serving more than 10,000 customers, SafeNet is a top security provider to the financial community, government community, the high-value software industry and global corporations. SafeNet’s revenue for 2007 exceeded $300 million.

About SafeNet, Inc.
SafeNet is a global leader in information security. Founded 25 years ago, the company provides complete security utilizing its encryption technologies to protect communications, intellectual property and digital identities, and offers a full spectrum of products including hardware, software, and chips. UBS, Nokia, Fujitsu, Hitachi, Bank of America, Adobe, Cisco Systems, Microsoft, Samsung, Texas Instruments, the U.S. Departments of Defense and Homeland Security, the U.S. Internal Revenue Service and scores of other customers entrust their security needs to SafeNet. In 2007, SafeNet was acquired by Vector Capital, a $2 billion private equity firm specializing in the technology sector.  For more information, visit www.safenet-inc.com.

Hitachi has acquired M-Tech Systems, Inc. as part of a strategy to broaden its overall security portfolio. The new company will be called Hitachi ID Systems, Inc. (Hitachi ID).

This marks the second acquisition in as many months (in March, IBM bought Encentuate) in an area called Identity and Access Management (IAM), a very “hot” market that Forrester predicts will grow from $2.6 billion in 2006 to more than $12.3 billion in 2014. In addition to IBM, Hitachi will face competition from Sun and others as they enters this new space.

Hitachi believes that M-Tech’s identity management technology will be an integral component of Hitachi’s complete portfolio of information security solutions. Hitachi has a variety of advanced security technologies. Its unique and interesting “finger vein” biometric authentication is already used for ATM authentication in about 80% of Japanese financial institutions that have adopted biometric authentication technologies. Hitachi has several other subsidiaries with deep expertise in security, ranging from RFID technology to hard disk drive encryption to system-level storage to IT consulting and beyond.

While consumer identity theft continues to make huge headlines, the issue often originates from a deeper problem: corporate information theft (whether inadvertent “accidents” or planned and malicious attacks). Identity and access management solutions, when implemented throughout an organization or government institution, can help to prevent both consumer ID theft and corporate information theft.

As background, Hitachi is an $86 billion dollar global entity that employees more than 300,000 people within 74 subsidiaries worldwide. Many think of them as the “GE of Japan” and since Japan is the world’s second largest economy, Hitachi is a company many are watching these days.

SafeNet, Inc., a global leader in information security, today announced that it has completed the acquisition of Ingrian Networks, Inc., a leading provider of Enterprise Data Protection and privacy solutions.

Ingrian’s DataSecure family of products complements SafeNet’s data security solutions to ensure that enterprise and government organizations are compliant and limit liabilities. With this acquisition, SafeNet becomes the first vendor to offer a comprehensive Enterprise Data Protection Solution that secures sensitive data across devices, applications, networks, and databases.

About Ingrian Networks, Inc.

Ingrian has been a global leader in providing enterprise encryption within the data center. The company’s award-winning encryption solutions have been deployed by government agencies and some of world’s most recognized corporations including Dell, Hyundai Motor and AIRMILES. Ingrian has also formed technology partnerships with a broad range of complementary market leaders, including Dell, HP, IBM, Microsoft and Oracle.  The also have sales channel relationships with businesses throughout Europe and Asia.

About SafeNet, Inc.
SafeNet is a global leader in information security. Founded 25 years ago, the company provides complete security utilizing its encryption technologies to protect communications, intellectual property and digital identities, and offers a full spectrum of products including hardware, software, and chips. UBS, Nokia, Fujitsu, Hitachi, Bank of America, Adobe, Cisco Systems, Microsoft, Samsung, Texas Instruments, the U.S. Departments of Defense and Homeland Security, the U.S. Internal Revenue Service and scores of other customers entrust their security needs to SafeNet. In 2007, SafeNet was acquired by Vector Capital, a $2 billion private equity firm specializing in the technology sector.  For more information, visit www.safenet-inc.com.

ConfIdent Technologies, a Portland, Oregon-based software technology company, has unveiled a revolutionary secure login authentication technology.  RecognitionAUTH™ promises to change the face of Internet security with a new secure login solution that eliminates passwords, adding a layer of security that is more secure yet intuitive for users to understand, without requiring additional hardware.

“The ConfIdent solution addresses the fact that passwords are the weak link in Internet security. No matter how complicated or lengthy passwords are, they are easily compromised by readily available keystroke recording software,” says ConfIdent Technologies President and CEO, Joel Norvell. “And as consumers use more online services, they tend to use the same passwords over and over which creates an added security risk. ConfIdent addresses this problem by eliminating passwords altogether and replacing them with stronger authentication that is also easier on users.”

“For the first time, corporate-grade security is available for the web,” says ConfIdent’s EVP Mitchell Savage.  “With a software-only one-time access code, online banking can now be as secure as the best-guarded corporate networks, still enhancing the user experience.”

How ConfIdent RecognitionAUTH Works

Based on more than five decades of research showing that recognition is an easier task for the human brain than recall, the ConfIdent login eases the burden on the user, while still heightening security.

Without requiring any additional hardware, the ConfIdent login system is a software-only method of giving the user a one-time access code at the last moment, just in time for login.

The innovative system draws the user’s eye to the secret based on a personal selection made during the enrollment process.  Instead of a password, each user chooses from a number of “categories”, like airplanes, cars or keys.  At time of login, ConfIdent displays an array of images including an airplane, a car, or a key, along with several other unrelated images. Without knowledge of the secret, the display appears completely random to other observers.

The user spots the secret categories known only to him and sees a series of digits that act as the one-time access code.  Since other observers do not know the user’s categories, they do not know which of the displayed access codes to use as the key. Only the user can interpret the one-time access code from the display.

About ConfIdent Technologies

ConfIdent principals Joel Norvell and Luke Sontag are the veteran founders of Vidoop, an online identity service established in March 2006 that uses the ConfIdent Technologies secure login to secure web single sign-on for consumers.

ConfIdent Technologies was founded to deliver robust security solutions tailored to the unique needs of enterprise and financial institutions.

The two assembled a team of software engineers led by Scott Blomquist, CTO, an 8-year Microsoft veteran who shipped four versions of the Windows operating system.  Team members now include those with security backgrounds from the Naval Research Laboratory, the National Institute of Standards and Technology, and JPMorgan Chase’s Identity & Access Management division.

The company is privately held and funded with principal management controlling a majority of the company’s stock.  Private investors form a syndicate that owns stock and has representation on an Advisory Council.

For more information on ConfIdent Technologies, visit ConfIdentTechnologies.com.

How ConfIdent RecognitionAUTH™ Secures the Login

Without additional hardware, ConfIdent Technology’s RecognitionAUTH™ eliminates passwords and is effective against the prevalent forms of hacking.

Described as Cognitive Decryption, the ConfIdent system is a method of giving the online user a one-time access code from an on-screen display that is unrecognizable by others.  Because the authorized user knows a secret choice he made during the enrollment process, he can discern the one-time access code from the seemingly random display.  Unauthorized users who do not know the user’s secret see only an array of random images and digits.

When the user enters his username, ConfIdent RecognitionAUTH responds by displaying a variable size matrix of photographs, each bearing a number of random alphanumeric characters.  The photos are different for every login.  However the user knows what to look for because the photos are based on categories that are the same for every login.

Among the dozens of image categories, examples include images of dogs, flowers, castles, food, cars, golf, babies, airplanes, and many others.

When the user chose his username (during enrollment for the online system), the user also chose a number of categories.  Every time he logs on, he finds his categories in the random display.  The alphanumeric characters shown in the images matching his category become his one-time access code for this single login.

Upon the next login, the categories will have shifted positions randomly throughout the matrix.  In addition, the image representing each category will have changed.  These facts combine to mean that human-level cognition is needed in order to recognize the secret in the matrix.

In addition, the alphanumeric characters shown with the images will also have changed.  So even if the user’s machine is infected with keystroke-logging (keystroke-recording) software, any keystrokes captured by the hacker are useless in the future.

Yet the login remains simple for the user who easily spots his categories and ‘cognitively decrypts’ his one-time access code from the seemingly random display.

The system also withholds displaying of the matrix from unknown computers, protecting against guessing schemes by denying unauthorized users access to the matrix to attempt the guessing process.  However, the true user can always see his matrix by registering a new computer through a one-time-per-computer out-of-band PIN process.

Thus, the system protects against keystroke logging, phishing, and brute force, while mitigating man-in-the-middle attacks.

http://www.drtoast.com/