Identity Management
These Cisco Secure ACS patches can be downloaded
from the Software Center on Cisco.com by visiting
http://www.cisco.com/cisco/software/navigator.html. The patches are
accessible using the following paths:
* "Security > Identity Management > Cisco Secure Access Control
System > Cisco Secure Access Control System 5.1"
* "Security > Identity Management > Cisco Secure Access Control
System > Cisco Secure Access Control System 5.2"
Workarounds
The areas of interest include, but are not restricted to:
- Phishing / Malware studies
- Identity Management examples.
- Solutions studies of Data Leakage.
+ Data Information Gathering / Metadata
+ Log Management
+ EndPoint Security
- Third Parties Control
for retrieving a user's home directory path, login shell and
primary group id from an Active Directory domain controller. This
functionality is enabled by defining the "winbind nss info"
smb.conf option to either "sfu" or "rfc2307".
Both the Windows "Identity Management for Unix" and "Services for
Unix" MMC plug-ins allow a user to be assigned a primary group
for Unix clients that differs from the user's Windows primary group.
When the rfc2307 or sfu nss_info plugin has been enabled, in
the absence of either the RFC2307 or SFU primary group attribute,
Winbind will assign a primary group ID of 0 to the domain user
Topics include, but are not limited to:
-- Secure and Trusted Computing
-- Security and Risk Management
-- Metrics and Benchmarking
-- Identity Management and Theft
-- Egovernment, Ecommerce and Ebanking Security
-- Application Security
-- AOP and Security
-- Privacy Issues
-- Security Policies
Data and Application Security
Data/System Integrity
Database Security
Digital Rights Management
Formal Verification of Secure Systems
Identity Management
Inference/Controlled Disclosure
Information Warfare
Intellectual Property Protection
Intrusion and Attack Detection
Intrusion and Attack Response
* Security of Web-based services
* Security of social networks
* Intrusion and anomaly detection
* Resource allocation for security
* Optimized response to malware
* Identity management
* Privacy and security
* Reputation and trust
* Information security and watermarking
* Physical layer security in wireless networks
* Information theoretic aspects of security
* Security of Web-based services
* Security of social networks
* Intrusion and anomaly detection
* Resource allocation for security
* Optimized response to malware
* Identity management
* Privacy and security
* Reputation and trust
* Information security and watermarking
* Physical layer security in wireless networks
* Information theoretic aspects of security
implemented within an information system to control for the unauthorized
use of, access to, or release of personal information held in any format.
Topics of interest in this theme include (but are not limited to):
* privacy preserving/enhancing technologies
* identity management and biometrics
* privacy and ubiquitous computing, e.g. RFIDs
* reputation, privacy and communities
* e-health and privacy
* anonymity and medical research
* employee privacy and network administration
* Security of Web-based services
* Security of social networks
* Intrusion and anomaly detection
* Resource allocation for security
* Optimized response to malware
* Identity management
* Privacy and security
* Reputation and trust
* Information security and watermarking
* Physical layer security in wireless networks
* Information theoretic aspects of security
of interest include (but are not limited to):
* new attacks, evasion techniques, and defenses
* operating system security
* hardware architectures
* "trusted computing" and its applications
* identity management, anonymity
* small trusted computing bases
* mobile systems security
* measuring security
* malicious code analysis and detection
* web security
* Security of Web-based services
* Security of social networks
* Intrusion and anomaly detection
* Resource allocation for security
* Optimized response to malware
* Identity management
* Privacy and security
* Reputation and trust
* Information security and watermarking
* Physical layer security in wireless networks
* Information theoretic aspects of security
implemented within an information system to control for the unauthorized
use of, access to, or release of personal information held in any format.
Topics of interest in this theme include (but are not limited to):
* privacy preserving/enhancing technologies
* identity management and biometrics
* privacy and ubiquitous computing, e.g. RFIDs
* reputation, privacy and communities
* e-health and privacy
* anonymity and medical research
* employee privacy and network administration
implemented within an information system to control for the unauthorized
use of, access to, or release of personal information held in any format.
Topics of interest in this theme include (but are not limited to):
* privacy preserving/enhancing technologies
* identity management and biometrics
* privacy and ubiquitous computing, e.g. RFIDs
* reputation, privacy and communities
* e-health and privacy
* anonymity and medical research
* employee privacy and network administration
=
=
=
=
========================================================================
Workshop on Digital Identity Management (DIM 2009)
http://www2.pflab.ecl.ntt.co.jp/dim2009
This workshop will explore critical issues concerning identity
management technologies for the information society. Existing
solutions are not necessarily interoperable or complementary, and
======================================================================
3) Vendor's Description of Software
"... Novell eDirectory is an LDAP directory service, and forms the
basis for many of the world's largest identity-management deployments.
Since its debut more than ten years ago, eDirectory has been trusted
for its scalability, compatibility, reliability, manageability and
security".
Product Link:
I. BACKGROUND
Internet Directory is Oracle's implementation of the Lightweight
Directory Access Protocol (LDAP) v3 service. It is used in conjunction
with Oracle Identity Management to implement user administration in the
Oracle environment. More information can be found at the following URL.
http://www.oracle.com/technology/products/oid/index.html
II. DESCRIPTION
Keynote Address 1: The Art of Click-Jacking - Jeremiah Grossman
Keynote Address 2: Cyberwar is Bullshit - Marcus Ranum
Presentations:
- Delivering Identity Management 2.0 by Leveraging OPSS
- Bluepilling the Xen Hypervisor
- Pass the Hash Toolkit for Windows
- Internet Explorer 8 - Trustworthy Engineering and Browsing
- Full Process Reconsitution from Memory
- Hacking Internet Kiosks
of interest include (but are not limited to):
* new attacks, evasion techniques, and defenses
* operating system security
* hardware architectures
* "trusted computing" and its applications
* identity management, anonymity
* small trusted computing bases
* mobile systems security
* measuring security
* malicious code analysis and detection
* web security
* Virtual Machine Security
* Security and Artificial Intelligence
* Secure Execution of Untrusted Code
* Privacy in the Electronic Society
* Cloud Computing Security
* Digital Identity Management
* Information Security Governance
* Scalable Trusted Computing
* Secure Web Services
* Security and Privacy in Medical and Home-Care Systems
============================================================
---------------------------
Oracle Database 10g Release 2 version 10.2.0.3 and prior
Oracle Database 10g Release 1 version 10.1.0.5 and prior
Oracle Application Server 10gR2 version 10.1.2.3.0 and prior
Oracle Identity Management 10g version 10.1.4.3 and prior
Oracle Enterprise Manager Grid Control
IV. Binary Analysis & Exploits/PoCs
---------------------------------------
|
