From: Chris McDonald (6/18/93) To: securitylist:;@WSMR-SIMTEL20.AR, CC: krvw@agarne.ims.disa.MIL Mail*Link¨ SMTP Information Systems Securit # 93-17 1. The July 1993 edition of "MacWorld" has several articles on electronic privacy. While the emphasis is on the private sector, one might draw some interesting comparisons with those of us in government who have routinely accepted (even preached) monitoring and surveillance in the cause of information systems security. 2. The July 1993 edition of "UnixWorld" has an easy to read tutorial on tcp_wrappers which has been much discussed in cert-tools and in the Firewalls discussion group. 3. Peter Neumann looks at the "risks" in modeling and simulation in the June edition of the "Communications of the ACM". His one page article has a great quote from Rebecca Mercuri: "It is the illusion that the virtual is real and that the system is an expert that creates a false sense of confidence." 4. While dialback and port protection devices have taken a beating from the "experts" in the last several years, an article in the May 1993 edition of "Network World" attempts to balance the record. The author is Mark Gibbs; the article is "Dialing for Data". 5. The Texas Gulf Coast Chapter of the Information Systems Security Association will hold the 2nd annual AIS Security Technology for Space Operations Conference in Houston from June 29- July 2, 1993. The three track program looks very ambitious with keynote addresses by Dr. Elliott Bell (Bell-La Padula Model), by Scott Charney from the Justice Department, and by Donn Parker from SRI. One can contact any ISSA member or call 713-283-3030. 6. I have spent some time on the virus simulation programs developed by David Rosenthal. It is my intention to publish a separate overview of the simulators with test results against the major anti-viral detection programs. ------- ------------------ RFC822 Header Follows ------------------ Received: by internetqm.llnl.gov with SMTP;18 Jun 1993 07:16:43 -0800 Return-path: CMCDONALD@WSMR-SIMTEL20.ARMY.MIL Received: from icdc.llnl.gov by icdc.llnl.gov (PMDF #3384 ) id <01GZIK7VFFKWA3EJ36@icdc.llnl.gov>; Fri, 18 Jun 1993 07:16:02 PST Received: from pierce.llnl.gov by icdc.llnl.gov (PMDF #3384 ) id <01GZIK79KSPSA3EIW0@icdc.llnl.gov>; Fri, 18 Jun 1993 07:15:37 PST Received: by pierce.llnl.gov (4.1/LLNL-1.18/llnl.gov-05.92) id AA02533; Fri, 18 Jun 93 07:16:22 PDT Received: from WSMR-SIMTEL20.ARMY.MIL by pierce.llnl.gov (4.1/LLNL-1.18/llnl.gov-05.92) id AA02524; Fri, 18 Jun 93 07:16:16 PDT Date: 18 Jun 1993 08:00:43 -0700 (MDT) From: Chris McDonald Subject: Information Systems Security Update, # 93-17 Resent-to: BILL_ORVIS@QUICKMAIL.llnl.GOV To: securitylist:;@WSMR-SIMTEL20.ARMY.MIL Cc: krvw@agarne.ims.disa.MIL Resent-message-id: <01GZIK7VHUDUA3EJ36@icdc.llnl.gov> Message-id: <12886103513.30.CMCDONALD@WSMR-SIMTEL20.ARMY.MIL> X-Envelope-to: BILL_ORVIS@QUICKMAIL.llnl.gov X-VMS-To: IN%"securitylist:;@WSMR-SIMTEL20.ARMY.MIL" X-VMS-Cc: IN%"krvw@agarne.ims.disa.MIL" Content-transfer-encoding: 7BIT ======================================================================