Preventing Remote Code Execution Exploits in Java
We all know there’s not a foolproof way to secure computing systems. But there are steps that can mitigate the risk of exposure once the inevitable breach occurs.
No case studies on ABAC?
The Symas Blog Keeping our clients up to date on big fixes, helpful tips, and more. Don’t get me wrong, everyone needs at least RBAC, but it has limitations and doesn’t work well with instance data in the authorization expression. This perceived need leads...
We Can Stop Looking For That Panacea Now
The Symas Blog Keeping our clients up to date on big fixes, helpful tips, and more. It seems every year there’s a new protocol for handling security. I was first sucked down into this black hole in the ’90’s. Few standards back then. Now, so many...
Ahem, it’s called Role-Based Access Control
The Symas Blog Keeping our clients up to date on big fixes, helpful tips, and more. Of late, on a quest, to educate the info sec community, the definition of RBAC. Not the first time. A couple years back, this role-infused rant: Using Roles for Access Control is Not...
Introducing a Security Access Control Engine Inside OpenLDAP
The Symas Blog Keeping our clients up to date on big fixes, helpful tips, and more. Security Access Control Engine - How & Why The OpenLDAP Accelerator is a Policy Decision Point that resides inside the slapd process. This presentation - “Introducing a...ApacheDS & Fortress QUICKSTART
As engineers, we are often encouraged to use the right tool for the job. Maybe that is because we tend to grow too attached to the familiar. When we’ve got a hammer, everything looks like a nail.