Jan 03 2013
In the spirit of my only ‘resolution’ for the new year, here’s a quick post on some of what I’m reading this week. Like many security professionals, I read dozens of posts and articles each week, but only a few of them are worth retweeting or blogging about. This week is the first of the year, so it’s likely many of the stories I read and rejected were about the way people looked back at the old year or looked forward to the new year. Very few ‘prediction’ articles made it into my stream, though I did use a few of the stories to decide which sites to stop reading. Hint: Your ‘2013 Security Predictions’ are worth the paper they’re printed on.
- DEFCON: The Documentary (a preview) – In his copious amounts of spare time (okay, maybe it’s what he does for a living) Jason Scott and a crew of videographers taped over 280 hours of video at DEFCON for it’s 20th anniversary. He’s released a preview of the documentary, and it’s fun for me to see some of the people and places that are essential for this event to happen every year. If you’ve never been, don’t be intimidated by some of the strange antics you see in the preview; people let lose at DEFCON in ways they won’t most of the rest of the year.
- how the pci standards will really die – I was initially a fan of PCI when I started working in that portion of the field six or so years ago. I was hopeful that it would spark change and force businesses to spend more energy (and money) on security. It did, but the standards stagnated and really haven’t changed in any significant way since those early days. PCI Guru points out a number of the fatal flaws with PCI and why it will be the card brands themselves that eventually kill it. Which can’t come soon enough for me.
- My 2013 Resolutions – Unlike me, SecJitsu believes in New Year’s resolutions and this is a pretty good list of them. We have a habit of getting a bit insular in the security community and it’s important to remember from time to time that we’re part of a larger corporate culture. I know I need to do a better job of this myself.
And some non-security reading for you as well.
- To my 13-year-old, an iPhone contract from your Mom, with love – I have two geek spawn who got phones for Christmas this year, so this resonated with me. I especially like the end, “You’ll make mistakes, we’ll work through them.” I don’t think my offspring exactly appreciated me sending this to them via Skype IM though.
- Best of 2012: Raspberry Pi Projects – I love my RPi’s. I just haven’t quite figured out any long term projects for them yet. This article has given me some ideas though.