Latest Content from CSI:

Cloud Security's About the Details

How would an Amazon Web Services attacker manage to get their instance loaded on the same physical machine, given that an EC2 customer ostensibly has no control over where in the cloud they are located (beyond some control over the geographical region where they are loaded)? It would seem pretty difficult, but this provides for a perfect example of the sort of ingenuity that cloud attackers can dream up. A team of researchers at MIT and UCSD wrote a paper on research in which they used what they called “cloud cartography” to learn about the mapping of new instances spawned within EC2 to physical IP addresses within Amazon address spaces. More...

Countdown to CSI Annual 2010

SAVE $400. Don't miss out!
Register Now

Poll of the Week

How many security incidents has your organization experienced in the past year?:

STAY CONNECTED WITH CSI!

We post valuable information, special discounts and offer you the opportunity to give your opinion and feedback to other security professionals and CSI.

     

  CSI's Robert Richardson's Twitter

email icon   Join Our Mailing List

And don't forget to check the Director's Cut section for new peeks into the mind of CSI Director, Robert Richardson.
CSI Membership

CSI Members receive key advantages that help define careers. New to CSI? Get started here!

 members
CSI 2010 Annual Conference

October 26 - 29, 2010
National Harbor, MD
Attend security's leading conference focused on providing the security knowledge you need to succeed in today's environment.

 CSI 2010
CSI VX 2010

The Ultimate Virtual Event
A multi-track virtual conference and trade show offering a full conference agenda and designed for audience interaction and engagement. Click here for more information.

 CSI VX
Filter

Unreal (well, virtual).
Agile content for agile security minds.
Security's virtual conferences.
Filter II, November 18, 2010
Interested in presenting?
Submit Today

 CSI Filter
Online Events

Stay informed with our interactive webinars and virtual events.

 CSI Online Events
CSI Computer Crime & Security Survey

The most widely cited cybercrime statistics in the world.
CSI's Mission

If you're an information security professional or are aspiring to be one, then CSI is here to help you succeed.

 CSI Logo

CSI Reports


CSI Computer Crime and Security Survey
The CSI Computer Crime and Security Survey Report is the world's most widely quoted research on computer crime. 2009 marks the 14th annual edition of the CSI Computer Crime and Security Survey, making it the longest-running project of its kind in the security industry.

Comprehensive Edition available to ELITE MEMBERS ONLY

IPAK


The Information Protection Assessment Kit (IPAK) is a tool intended to help determine how well your organization's information protection program is doing and where it should go in the future. IPAK provides you with a snapshot of your program and measures the progres over time. Your organization will derive meaninful benefits from this process by identifying critical new or ongoing weaknesses in your program and significantly reduce exposure.

Alert Newsletter

Computer Security ALERT
The ALERT goes beyond the usual headlines, delving deeper into the news with interpretive analysis, giving you the insight you need to protect your organization without inhibiting productivity. Published 10 times per year, the Alert digs into pressing security issues--like identity management, cloud computing, virtualization, compliance, globalization and mobile devices--and helps security managers decide what's real, what's hype and what's right for their organization. CSI MEMBERS ONLY
Read an excerpt: Virtualization: Security Enabler or Security Threat?
twitter guide

Guides to Social Networking Security
Your employees are on Facebook, LinkedIn, Twitter and MySpace -  make sure your company is protected. These four guides are designed to distribute to your end users, and show them how to use these sites responsibly and securely.

ELITE AND PREMIUM MEMBERS ONLY
 

 Frontline cover

Frontline Security Awareness Newsletter
Reinforce the security message to end-users with this quarterly newsletter from CSI. Your company's logo displayed on masthead. Distribute via intranet or print.

FRONTLINE SUBSCRIBERS ONLY
 Web research law

 

CSI Working Group on Web Security Research Law
Although software security researchers can legally rip into software, discover vulnerabilities, publicly disclose vulnerabilities and even release exploit code, Web security researchers could go to jail for simply looking for vulnerabilities, much less disclosing them. To investigate this dichotomy, CSI created a working group of Web security researchers, expert attorneys and individuals who'd been charged with crimes under these laws and reported on why this legal separation exists, whether it should exist, and what it all means for the future of Web security.