• Mobile data: Are you carrying a suitcase or a safe?

  By Kathy Kriese, principal product manager, Encryption Group, Symantec | 24 January, 2012 07:40

  This vendor-written tech primer has been edited by Network World to eliminate product promotion, but readers should note it will likely favor the submitter's approach.

• The Oracle flaw: Clarifications and more information

  By Paul Venezia and Eric Knorr | 24 January, 2012 04:32

  Since InfoWorld published "Fundamental Oracle flaw revealed" on Jan. 17, we've received abundant feedback from Oracle users and consulted with Oracle representatives, who went through the story point by point, offering clarifications and additional details, including information about the patches that address the flaw.

• Fundamental Oracle flaw revealed

  By Paul Venezia | 18 January, 2012 09:24

  Over the past two months, InfoWorld has been researching a flaw in Oracle's flagship database software that could have serious repercussions for Oracle database customers, potentially compromising the security and stability of Oracle database systems.

• Symantec confirms source code leak in two enterprise security products

  By Jaikumar Vijayan | 06 January, 2012 23:04

  Symantec late Thursday confirmed that source code used in two of its older enterprise security products was publicly exposed by hackers this week.

• ACMA issues Vodafone with TCP Code directions

  By Hamish Barwick | 21 December, 2011 10:36

  The Australian Communications and Media Authority (ACMA) provided directions for Vodafone and Vodafone Network to comply with the Telecommunications Consumer Protections Code (TCP Code).

• Cloud security: how to protect your data

  By CSO staff | 14 June, 2011 21:17

  To use Cloud computing securely requires companies to know where their data is stored and who has access to it. Ironically, the reason Cloud is so popular is because organisations don't want to worry about these details.

  So can the issue be solved by adhering to standards? Increasing legislation? Maybe we need a global technical disaster to ‘sober up’ an industry drunk on the power of Moore's Law.

• Rio Tinto spying case a wake up call to CIOs?

  By Tim Lohman | 12 August, 2009 11:28

  The arrest of Rio Tinto executive Stern Hu in China on spying charges has brought home the need for CIOs to examine data security according to the CEO of security company PGP, Phil Dunkelberger.

• Building a data center security architecture

  By Andreas M. Antonopoulos | 11 June, 2009 03:13

  Data center architecture has been changing quite dramatically over the past few years. In many data centers, organic growth had left them broken up into application silos. The standard three-tier architecture was copied for each application leading to a fairly hierarchical network. In this architecture, some core security services, such as firewalls and intrusion prevention, were concentrated at the root of the network tree, closest to the ingress routers and around any  DMZs.

• More employees neglecting data security, survey says

  By Agam Shah | 11 June, 2009 08:38

  More employees are ignoring data security policies and engaging in activities that could put a company at risk, according to a survey released by Ponemon Institute on Wednesday.

• Information systems audit: the basics

  By Jennifer Bayuk | 18 May, 2009 23:57

  In the early days of computers, many people were suspicious of their ability to replace human beings performing complex tasks. The first business software applications were mostly in the domain of finance and accounting. The numbers from paper statements and receipts were entered into the computer, which would perform calculations and create reports. Computers were audited using sampling techniques. An auditor would collect the original paper statements and receipts, manually perform the calculations used to create each report, and compare the results of the manual calculation with those generated by the computer. In the early days, accountants would often find programming errors, and these were computer audit findings.

Whitepapers about data security

• 

  Build Archiving Systems to Meet Compliance Demands

  This paper reviews several of the most prominent Compliance regulations and where they stand today.

• 

  Delivering applications anywhere, anytime with maximum security and control over data

• 

  Data Protection 2.0: It’s Not Just Names and Numbers Anymore

• 

  Strategy Guide | How Not to Get Buried in Data