Hyperlink: Security: Information
Meta-Reference on Information Technology

Information on Security

• Category: Computer security
  From Wikipedia, the free encyclopedia.
• The World Wide Web Security FAQ
  At W3C, by Lincoln D. Stein & John N. Stewart. (Formerly at www-genome.wi.mit.edu).
• CERT Coordination Center (CERT/CC)
  Computer Emergency Response Team (CERT) / Control Center, Carnegie Mellon University.
  Alerts, Events, Papers, FTP Archives, Security Improvement (modules, practices, implementations), Tech Tips, Annual Reports, Other Sources (books, groups and mailing lists, tools, Internet Security Glossary [RFC-2828]).
  
  • Before You Connect a New Computer to the Internet: guidance for users connecting a computer to the Internet for the first time.
  • Home Network Security
    This document gives home users an overview of the security risks and countermeasures associated with Internet connectivity, especially in the context of always-on or broadband access services (such as cable modems and DSL).
    Home Network Security (mirror) at US-CERT.
  • CERT Security Improvement Modules
• Encryption and Security-related Resources
  By Peter Gutmann. This page contains security-related resources (aka "the crypto link farm") found on the net.
• Tom Dunigan's Security page
  Security pointers: PGP, one-time passwords, kerberos, Crypto API's, random numbers, secure applications, people and papers, education, vendors, govt projects, intrusion detection, vulnerabilities, Java and WWW, UNIX security, NT security, other.
• Kurt Seifried Information Security
  By Kurt Seifried. Security Topics: Advisories, Anti Virus, Articles, Authentication, Books, Cryptography, Firewalls, Policy, Product reviews, Social, Technical.
  Linux Administrator's Security Guide, Basic Crypto Book.
• A Sysadmin's Security Basics
  By Mike DeGraw-Bertsch, October 2001. O'Reilly Network: Linux DevCenter.
• CriptoRed [In Spanish]
  CriptoRed - Red Tematica Iberoamericana de Criptografia y Seguridad de la Informacion. Universidad Politécnica de Madrid (UPM), España.
  Temas relacionados con la Docencia: Theory guides and articles, Electronic books for download and Bibliography, about cryptography and information security.
  Diapositives of "Computer Security Course (Spanish)" (687 slides PowerPoint), Fev/2002, prof. Dr. Jorge Ramiró Aguirre, Seguridad Informática, Universidad Politécnica de Madrid (UPM), España.
• Internet Security Alliance (ISA)
  Despite the very real threats present, ISA provides members with a single portal for up to-the-minute threat reports, best security practices, risk management strategies, and more, which will give them the edge in the competitive and volatile environment of the Internet.
  Working Groups, Conferences, News, Resources.
• CERT Security Improvement Modules
  By CERT Coordination Center, Carnegie Mellon University. Each CERT Security Improvement module addresses an important but narrowly defined problem in network security. It provides guidance to help organizations improve the security of their networked computer systems.
• Securing Internet Information Servers
  By the Members of the CIAC Team, December 1994 (Revised August 2000).
• Symantec Security Check
  Symantec Security Check is a free service designed to help you understand your computer's exposure to online security intrusions and virus threats.
• Church of the Swimming Elephant (COTSE)
  Reference portal for security professionals, including News, Online tools, Documentation Reference, Downloads and other resources.
• Dutch Security Information Network - DSINet.org
  Archive, Backend, Forum / Messageboard, Hyperlinks, RFCs, Text files, Tools / Downloads.
• Practical UNIX Security
  Presentation by Jeff Thompson & Joe Gross, Feb 13, 1997.
• Open Web Application Security Project (OWASP)
  OWASP is dedicated to enabling organizations to develop, purchase, and maintain applications that can be trusted. OWASP produces free, unbiased, open-source documentation, tools, and standards.
• Wireless LAN Security Site
  The Unofficial 802.11 Security Web Page. This page tries to gather relevant papers and standards in a single place. By Bernard Aboba.
• Rainbow Series Library
  By USA Department of Defense (DoD), Trusted Product Evaluation Program (TPEP). DoD/NSA Rainbow Series books documents for download. Formats: ASCII Text, Postscript (PS), Adobe Acrobat (PDF).
• The Orange Book Site - Dynamoo.com
  First published in 1983, the US Department of Defense Trusted Computer System Evaluation Criteria, (DOD-5200.28-STD) known as the Orange Book was a de facto standard for computer security, now superseded by the Common Criteria Evaluation and Validation Scheme (CCEVS). Orange Book was part of NSA/DoD Rainbow Series.
  Orange Book Summary.
  USA Department of Defense Standard: Trusted Computer System Evaluation Criteria (DoD 5200.28-STD).
• Infosec Writers
  A major objective of the Info Security Writers is seeking the security enthusiasts who write. Most of the site's content is generated by these people willing to share their knowledge and experiences on the various aspects of security/hacking via original white papers, articles and projects.
• Directory: Security
  Many well-organized links, on Security, Encryption, and Virus, by Rajiv Shah. Social Issues in the Design of Computing Technologies: Security.
• Google Directory: Computers Security

Security Information and News

• Security Focus (link alternativo)
  Security News, Infocus security columns, Security Calendar, Vulnerabilities, Advisories, Tools, Forums, Links, Vendor services and products.
  Topics: Basics, Microsoft, UNIX, IDS (Intrusion Detection), Incidents, Virus.
  Library: books and papers on Access Control, Auditing, Authentication, Availability, basics, Computer Crime, Confidentiality, Cryptography, E-Commerce, Hostile Code, Incident Handling, Information Hiding, Information Warfare, Internet Law, Intrusion Detection, Operating Systems, RFC, Security, Software Engineering, Standards, Symposiums & Proceedings, US Government, Vulnerabilities.
  Vulnerabilities Archive (by vendor, title, keyword, BugTraq id, CVE id).
  Home of BugTraq list and other security related Forums/Mailing Lists: auditing, certification, cryptography, firewalls, hacking, intrusion detection, law, micellaneous, news, privacy, products, projects, trusted OS, viruses, VPN, vulnerabilities, web.
• Módulo - Brazil
  Brazilian pioneer company specialized in information security. Modulo site is a information security portal, with articles, news and lots of related information, in portuguese.
• Cipher
  Cipher: The Newsletter of the IEEE Computer Society TCSP. By IEEE Technical Committee on Security and Privacy (TCSP), IEEE Computer Society.
  Cipher Past Issues Archive. Cipher Book Reviews.
• Internet/Network Security - About.com
  About.com Guide by Jim Williams.
• Security Fix
  Brian Krebs on Computer and Internet Security, Washington Post Technology News.
• InfoSec News (ISN)
  Archive: starting 13 Mar 1998.
  Internet Security News (ISN) List Archives at Landfield Group: Mar 1998 - Jan 2005.
  ISN is hosted by Attrition.org / C4I.org.
• Linux Security
  Linux Security - The Community's Center For Security.
  News, Search, Features, Advisories, Documentation, Resources. By Guardian Digital.
• Linux Exposed
  Articles, Resources Links, Books Archive, NewsGroup, Howto's.
• Packet Storm
  Packet Storm is a large and current security tools resource, primarily a file repository for security tools and exploits. It is a non-profit organization comprised of computer security experts dedicated to providing the information necessary to secure the World's networks, publishing new security information on a network of websites. Forums, assessment, defense, papers, magazines, miscellaneous, links.
  Mirrors: @ .nl, @ linuxsecurity.com.
• secureroot.com - Computer Security Resource
  By About Network Security.
• Kill -HUP
  A Unix and Information Security Community.
• Computer Weekly: Security Products
  By Computer Weekly - Technology. Security Technology News.
• Network Security Library
  Windows, Unix, NetWare, Firewalls, Intrusion Detection, Security Policy, WWW, NCSC&DoD Rainbow series, Harmless hacking book, Misc.
• The Information Security Glossary
  By Security Policy World.
• HispaSec [In Spanish]
  Hispanic portal devoted to security information and news. Sections on security: Internet, Hardware, Software, Cryptology, Virus, Legislation, Events. In Spanish.
• Bitpipe: Security: White Papers and Reports
  White Papers, Webcasts, Case Studies, Analyst Reports, and Product Information on Security. Topics: Security, Network Security, and much more.
• Computer Security Now
  "Computer Security News for the rest of us".
• Help Net Security (HNS)
• @netsys.com Archives
  By netsys.com - The Intelligent Hacker's Choice - unix. internet. security.
  Security Glossary, RFC Database, FAQs, MBONE Resources, Unix & Security DB, Articles, News. Discussion Mailing Lists: Firewalls, Sun Managers, SuSE Linux (english), BSDI Users, Firewall Toolkit Users, IETF, IETF IPSEC. Newsletters: Hackers Newsletter, Security Alert.
• Mailing list ARChives (MARC) - Information Security
  Archive repository for dozens os forums related to information security, among other topics.
• Hideaway.Net
  PC Security: Library, Software, Links. Server Security: Advisories, Books, Library. Anti-Virus: Anti-Virus Library and Articles, Virus Scanning Software, Alerts, Links. Privacy: Software, Books, Anonymous Web Browsing, Private E-mail. Auditing Services.
• Kriptópolis [In Spanish]
  Since 1996, independent information about Internet Security, Cryptography and Cyber-rights. Spanish translation of Bruce Schneier's column CryptoGram. Bulletins, Articles, Announces, Forums, Interviews, Virus, Vulnerabilities. S1M Quick Database: database of alerts, patches, vulnerabilities and software updates, in collaboration with DeepZone. In Spanish.
• Technical Incursion Countermeasures (TICM) Knowledge
  TICM - Frequently Asked Questions: Windows NT Security FAQ,
  Network Intrusion Detection Systems (NIDS) FAQ.
  The Insider
  The Journal for Resource Protection Professionals.
  The Firewall Hardening Guide.
• .Rain.Forest.Pupy.
  Security, Knowledge Base, Auditory, Resources.
  Alternative rfp.labs site "skins" available.
• Yahoo! WebRings on Computers & Internet Security
  General, Hacking, Hardware, Networking, Viruses.
• The Search Directory: Information Security Search Engine
  The Information Security & Computer Security Group of Portals.
• SecurityPortal.com
  Top security news, Research Center, Buyer guide, Security Services, Career Center, Discussion Forum, Security Search, Features.
• RootShell
• WindowSecurity.com
  Microsoft Windows security site: intrusion detection, anti-virus, firewalls and more.
• NT Security - Frequently Asked Questions
  Compiled by Robert Malmgren, The Royal Institute of Technology, UK, 1996-1997.
• Macintosh Security Site
  SecureMac.com is a site devoted to Apple Macintosh security and Mac OS X Security.

Information and News in Portuguese

• See Hyperlink: Security: Info (Portuguese)

Magazines

• SC Magazine
  A large circulation information security magazine.
  Information Security News
  On-line news service is backed by SC Magazine.
  Secure Computing Magazine International Edition - West Coast Publishing.
• SC Awards
  Secure Computing Industry Awards. By West Coast, SC Magazine.
  Reader Trust Awards: Anti-Virus Solution, Encryption Product, General Security, Internet Security Product. Academy Awards: Best Access Control, Anti-Virus Solution, Biometric Solution, Communication Security, Content Security, e-Business Security, Encryption Solution, Firewall, General Security, Intrusion Solution, Network Security, Security Management, Security Service. Judges Awards: New Security Product, Security Article, Security Idea or Practice, Lifetime Achievement Award. Principal Awards: Security Hardware, Security Software.
• Information Security Magazine
  Information Security Wire Digest e-mail newsletter.
• ;login: - The Magazine of USENIX & SAGE
  By USENIX - The Advanced Computing Systems Association / SAGE - The System Administrators Guild. Online issues of ;login: over a year old are freely available to everyone.
• Sys Admin Magazine
  The journal for UNIX systems administrators.
  Archives, Downloads, Solaris Corner, LINUX Rookery, Tool Showcase, Q&A, Resources, Newsletters.
• Information Security Bulletin
  Information security journal.
• Security Adminsitrator
  Independent, technical security information for Windows IT professionals.
  Formerly Windows IT Security. By Windows 2000 Magazine Network.