DtSR Episode 221 - NewsCast for Nov 22 2016

Send the hosts a message - try it now!

DHS Releases Strategic Principles for Securing the Internet of Things

• https://www.dhs.gov/sites/default/files/publications/Strategic_Principles_for_Securing_the_Internet_of_Things-2016-1115-FINAL....pdf
• These seem to be the same principles that we have been saying for all software (web, mobile, etc.)
• NIST also has a more generic publication 800-160
• What is the implication for the enterprise?
• Do we prioritize anything differently as a result

• Is the marketplace “broken?”
• If “we’ve told people before” but “they didn’t listen,” does that actually mean they are wrong?
• This is an area where we need to think about what we’re actually asking for
• http://thehill.com/policy/cybersecurity/306418-house-subcommittee-chair-regulation-of-internet-connected-devices-not

Facebook buys black market passwords to keep your accounts safe

• Password reuse is the single greatest cause of harm? Really?
• Sounds too much like a lab experiment, rather than a legitimate use of capital
• https://www.cnet.com/news/facebook-chief-security-officer-alex-stamos-web-summit-lisbon-hackers/

Michael just got back from Boston, hosting a CISO Leadership Conferences. We discuss the trends that came up…

https://www.klogixsecurity.com/blog/boston-ciso-summit-recap  

→ just the trends…

• Importance of a shared vision between the business and information security

Support the show

>>> Please consider clicking the link above to support the show!
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
YouTube home: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
LinkedIn Page: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
X/Twitter: https://twitter.com/dtsr_podcast