Wednesday, September 11, 2002

The OCTAVE Methodology The OCTAVE (Operationally Critical Threat, Asset, and Vulnerability Evaluation) methodology to threat assessment developed by CERT provides an organized way to perform that function for a large organization.  I will have our enterprise security team review this methodology for applicability to the state to make sure that our security preparations are more thorough. 9:18:48 AM

Still Fretting over Cybersecurity New York Times article reviews the progress that has been made over the past year and makes suggestions for what lies ahead. Another article in InfoWorld suggests that fears over a cyberattack on September 11th are way overblown, quoting Rob Rosenburger of VMyths, "Tomorrow, I honestly predict we will see less hacking activity than we saw yesterday."  The first email I received this morning was on an attempted attack on one of our test servers this morning.  We shut down external (internet) access for now. Here's yesterday's NIPC advisory which we received earlier through Infragard. 9:13:15 AM

© Copyright 2002 David Fletcher.