InfoWorld - Security Adviser: Let your worst fears be your guide

/Home/Internet Security: Blogs/Internet Security: InfoWorld blog/InfoWorld: Security Adviser 2009

Your computer security defense should be built with the assumption that all attackers are trusted, highly privileged insiders acting within the system

By Roger A. Grimes
March 13, 2009

I was recently involved in planning a massive Internet infrastructure upgrade. The goal: To make a nationwide network more reliable and secure for both consumers and service providers. The security piece involves massively flexible authentication methods served up in client and cloud-based form with heaping doses of WS-Trust, WS-Federation, and WS-Policy. It's a beautiful, ready-to-deliver solution. If you've read solution no. 2 of my "Fix the Internet" whitepaper, you already know the key ideas.

Click the URL above to read the full article