TSA Lectures, Lies, and Rude, Dismissive Behavior

On a recent trip to Orlando, I opted out of the full-body scan at AUS, as I always do at every airport security checkpoint.  While waiting for my pat-down, I was lectured by the TSA gate agent about how safe they are, was subsequently questioned about my cellphone use as a radiation exposure comparison, and was subjected to repeated attempts to get me to change my mind and just go [...]

By |2012-02-21T13:02:38+00:00February 21st, 2012|opinion, physical security, rant, security, technology, travel|0 Comments

Advanced Persistent Threat

Ok, enough with the APT marketing and journalism diarrhea...  It's really quite simple: ad·vanced - /ædˈvænst, -ˈvɑnst/ -adjective 1. ahead or far or further along in progress, complexity, knowledge, skill, etc.: an advanced class in Spanish; to take a course in advanced mathematics; Our plans are too advanced to make the change now. per·sist·ent - /pərˈsɪstənt, -ˈzɪs-/ –adjective 1. persisting, esp. in spite of opposition, obstacles, discouragement, etc.; persevering: a most [...]

By |2010-04-12T09:37:30+00:00April 12th, 2010|attack, hpavc, rant, security, threat modeling|0 Comments

How NOT to Write a Protocol Specification

For the last week or so, I’ve been tasked with implementing Application Simulators in the BreakingPoint product for the OWAMP and TWAMP protocols, RFC 4656 and RFC 5357, respectively.  These are honestly two of the most poorly written protocol specifications that I’ve ever read.  Luckily, they’re rather short.  Not only are many parts vague and ambiguous, but some parts read like a stream-of-consciousness dump directly to a text editor. [...]

By |2008-11-17T16:48:08+00:00November 17th, 2008|opinion, rant|0 Comments