Episode 19, October 30, 2012 - CERIAS

Wednesday, October 31, 2012 Posted by Keith Watson in

Listen Now (35:19):

[ Download (MP3) 33.9 megabytes ]

This podcast is brought to you by the Greater Lafayette Security Professionals (GLSP) group, SecurePurdue, and the Center for Education and Research in Information Assurance and Security (CERIAS) at Purdue University.

Show Notes

Hosts

Preston Wiley, CISSP, CCNA
Mike Hill, CISSP
Keith Watson, CISSP-ISSAP, CISA

Announcements

The Fall CERIAS Security Seminars continue:
- October 31, Vaibhav Garg, Indiana University
- November 7, Roxana Geambasu, Columbia University
- November 14, Sypris Electronics
The seminars begin at 4:30pm in Stewart Center G52 and will also be shown on the Purdue channel. These seminars are recorded and made available as podcasts through iTunes and on YouTube.
The November Greater Lafayette Security Professionals meeting will be a little different. Based on a request by Pascal Meunier, this meeting will focus on anecdotes, stories, and lessons learned from our members. We want everyone to come with at least one great story from the trenches in which you learned something about security, the nature of risk, unexpected outcomes, or human weakness. Pictures are encouraged. This should be a fun and helpful event. Even if you don’t have anything to share, please come to learn from others. The meeting will be held on November 8 at 11:30am in Young Hall, room 647. And as always, remember to bring your lunch.

Security Updates

Mozilla Firefox and Thunderbird were updated to 16.0.2, October 26
Oracle released a Java critical patch update advisory on October 16th. The patch corrects 30 security issues, 29 of which are remotely exploitable without authentication. The current versions are Java 7-update7, 1.6.0_37, 1.5.0_38, 1.4.2_40.
- If you are an Apple Mac OS X user, there is an update available. Be warned that installation of the update removes the Java web browser plugin completely. You will no longer be able to run Java applets from the web browser. If you need this functionality, you have to install the Mac OS X Java package available from Oracle.
- Apple gets aggressive - latest OS X Java security update rips out browser support by Paul Ducklin (naked security blog)

Articles

Overview of voting equipment used in the United States (Verified Voting):
- Types of voting equipment
- Equipment in use by state
The Center for Information Technology Policy at Princeton is pleased to host “E-Voting: Risk and Opportunity,” a live streamed symposium on the state and future of voting technology on November 1st. Streaming online available
Election 2012 Hacking Threat: 10 Facts by Matthew J Schwartz (Information Week)
Post-Election Audits Necessary for Electronic Voting Systems by Fahmida Y. Rashid (PC Magazine)

The Serious about Security Podcast was brought to you by the Greater Lafayette Security Professionals (GLSP) group, Secure Purdue, and the Center for Education and Research in Information Assurance and Security (CERIAS) at Purdue University.

Serious About Security RSS Feed

The views and opinions expressed in this podcast are those of the participants and do not reflect the views and opinions of Purdue University and The Center for Education and Research in Information Assurance and Security (CERIAS).