ISSA Journal Luglio 2020

ISSA Journal Luglio 2020

ISSA Journal  - La rivista mensile riservata ai Soci AIPSI

Indice e contenuti dei principali articoli nell'edizione di Luglio 2020

Demystifying Tokens for Securing Enterprise APIs, by Sandeep Jayashankar – ISSA member Delaware Chapter and Subin Thayyile Kandy – ISSA member Delaware Chapter. This article is mainly designed for a software architect to help understand the problems tokens tend to solve, with illustrations of different types of tokens in use. The authors also explain the token implementation methods for an enterprise API mechanism and provide security best practices to be taken care of when implementing the same.

Managing Privacy Risk when Logging Events, by Koko Koffie-Lart – ISSA member, Northern Virginia Chapter. Recent changes in governmental regulations in Europe and the US have driven the need to take a closer look at what exactly is captured in event log files, as well as where logs are stored, transported, processed, used, and retained. The author presents a set of guidelines to help mitigate privacy risk when logging event.

Managing Outsourced Risk: How to Read a SOC 1 or SOC 2 Report, by Audrey Katcher, Jennifer Zanone – ISSA member Denver Chapter, and Christine FiggeThis article will help you better understand how a System and Organization Controls (SOC) report from a service organization can help you better manage the risk that your company outsources on a regular basis.  

Python Programming: Processing CVE Description and CPE Data, by Constantinos Doskas – ISSA Senior Member, Northern Virginia Chapter. This article continues the discussion about the basic building blocks of the Python programming language. We will demonstrate how common vulnerabilities and exposures (CVE) description data can be extracted from the NVD JSON files.  

Inoltre in questo numero:

  • From the President
    • Sabett’s Brief
  • It’s a Pendulum, Not a Tug-of-war...
  • Women in Cybersecurity
    • Up Close with Candy Alexander, ISSA International President
  • The Cryptic Curmudgeon
    • Security Privacy, and Contact Tracing
  • Privacy
    • Enact in Haste...
  • Gray Hat
    • Regaining Privacy?
  • Open Forum
    • NY Shield Act Sets in Motion Sweeping Privacy Regulations
  • Crypto Corner
    • Time Travel Resistant Cryptography
  • Security in the News
  • Association News
  • Career Center

AIPSI - Capitolo italiano della mondiale ISSA

Associato 

 

ABOUT AIPSI

AIPSI, Associazione Italiana Professionisti Sicurezza Informatica, e’ il capitolo italiano di ISSA®, un’organizzazione internazionale no-profit di professionisti ed esperti praticanti. Con l’attiva partecipazione dei singoli soci e dei relativi capitoli in tutto il mondo, AIPSI, in qualita’ di capitolo di ISSA, e’ parte della piu’ grande associazione non-profit di professionisti della sicurezza che vanta oltre 13000 a livello mondiale.

Sponsor AIPSI 2024

qintesi logo blu

Privacy

Sede Legale

 
AIPSI c/o Malabo Srl Via Savona 26 20144 Milano
Partita IVA: 05311540966
 
+02.39443632
 
aipsi@aipsi.org