Latest Content from CSI:

Cloud Security's About the Details

How would an Amazon Web Services attacker manage to get their instance loaded on the same physical machine, given that an EC2 customer ostensibly has no control over where in the cloud they are located (beyond some control over the geographical region where they are loaded)? It would seem pretty difficult, but this provides for a perfect example of the sort of ingenuity that cloud attackers can dream up. A team of researchers at MIT and UCSD wrote a paper on research in which they used what they called “cloud cartography” to learn about the mapping of new instances spawned within EC2 to physical IP addresses within Amazon address spaces. More...

Countdown to CSI Annual 2010

SAVE $400. Don't miss out!
Register Now

Poll of the Week

How many security incidents has your organization experienced in the past year?:

STAY CONNECTED WITH CSI!

We post valuable information, special discounts and offer you the opportunity to give your opinion and feedback to other security professionals and CSI.

     

  CSI's Robert Richardson's Twitter

email icon   Join Our Mailing List

And don't forget to check the Director's Cut section for new peeks into the mind of CSI Director, Robert Richardson.
CSI Membership

CSI Members receive key advantages that help define careers. New to CSI? Get started here!

 members
CSI 2010 Annual Conference

October 26 - 29, 2010
National Harbor, MD
Attend security's leading conference focused on providing the security knowledge you need to succeed in today's environment.

 CSI 2010
CSI VX 2010

The Ultimate Virtual Event
A multi-track virtual conference and trade show offering a full conference agenda and designed for audience interaction and engagement. Click here for more information.

 CSI VX
Filter

Unreal (well, virtual).
Agile content for agile security minds.
Security's virtual conferences.
Filter II, November 18, 2010
Interested in presenting?
Submit Today

 CSI Filter
Online Events

Stay informed with our interactive webinars and virtual events.

 CSI Online Events
CSI Computer Crime & Security Survey

The most widely cited cybercrime statistics in the world.
CSI's Mission

If you're an information security professional or are aspiring to be one, then CSI is here to help you succeed.

 CSI Logo

Privacy Statement

 
Computer Security Institute

Effective February 2010

Computer Security Institute and its parent company UBMi (“CSI” or “we”) realizes the importance of protecting the privacy of all information provided by users of our websites, registrants for our events, recipients of our e-mail newsletters and all who trust us with information that identifies them as an individual. We created this policy with a fundamental respect for our users' right to privacy and to guide our relationships with our users. This privacy statement discloses the privacy practices for all web sites, events or products and services owned by CSI.

Information Collection and Use
 

We collect information that identifies you as an individual when you give it to us directly for example, as website users and customers or as registrants for a face to face event. In this section of our privacy policy, we will describe the type of information we collect and how we use it to provide and improve the services and information you request from us.

Registration and Ordering

When attending our conference and trade show events, using some of our websites and signing up for certain selected services, users must first register and provide contact information (such as name, e-mail address, mailing address and phone number, information about your professional responsibilities, and billing information, including credit card numbers). We use this information to communicate with you, confirm registration, provide requested services and manage our events. We may also use the data you provide to let you know about other events and services which may be of interest to you or to tell you about updates and special offers.

Some of our products and services are free to users who meet certain demographic criteria. Independent auditors may need to certify the eligibility of these subscribers. In order to do that, we may collect unique identifiers (such as mother's maiden name) that we disclose to the auditors strictly for industry reporting and audit verification purposes.

Surveys and Contests

From time to time we invite you to participate in surveys or contests. Participation in these surveys or contests is completely voluntary and the user therefore has a choice whether to disclose requested contact information. In addition to other uses set forth in this policy, contact information collected in connection with surveys and contests is used to notify the winners and award prizes and may be shared with sponsors of such surveys or contests.

Communications with Us

We may have features where you can submit information to us (such as our feedback forms). Requests for service, support or information may be forwarded as needed to best respond to a specific request. We may retain e-mails and other information sent to us for our internal administrative purposes, and to help us to serve you better.
Automatic Data Collection

We also use common Internet technologies, such as “cookies” to collect information. A cookie is a small piece of data stored on the user's hard drive which can be used to identify the user’s pc. A cookie cannot be used to identify you as an individual unless it is separately associated with additional data about you.

We do not currently use cookies on our web sites in a way that identifies you as an individual. We do however collect cookie information about our audience in the aggregate to understand more about how are web sites are used. We may use clear gifs and associated cookies to manage our email campaigns and follow up on events and services of particular interest to you.

You may use the tools in your browser to block or delete cookies at any time.

For our internal purposes, we gather date, time, browser type, navigation history and IP address of all visitors to our site. This information taken by itself does not contain anything that can identify users personally. We use this information for our internal security audit log, trend analysis and system administration, and to gather broad demographic information about our user base.

With Whom Information About You Is Shared
 

We do not disclose information that identifies you to third parties except as follows: to publish the list of registrants for a face to face event; in certain instances, to hotels or airlines if we assist you in making travel arrangements for an event; to contest or some survey sponsors; if we ask your specific permission when we collect that information from you and/or if it is clear as part of registration that the sponsors of a specific event will be given information in order to contact you.

We do, however, reserve the right to disclose information about you to third parties as follows: to vendors that work on our behalf; to law enforcement or other entities that present valid legal process; to protect human safety or our networks or property; or as part of a sale or merger of business assets. Users should also be aware that courts of equity, such as U.S. Bankruptcy Courts, might have the authority under certain circumstances to permit personal information to be shared or transferred to third parties without permission.
 
Correction/Updating Personal Information
 

If your information changes, or if you no longer desires our product(s)/service(s), we provide a way to correct or update or block further use your personal data. Please contact Customer Support for the applicable product or service, csi@ubm.com.
 
Security

We use reasonable administrative, technical, and physical safeguards to protect personal information against theft, loss, or misuse. Unfortunately, no data transmission over the Internet or storage can be guaranteed to be 100 percent secure. As a result, while we strive to protect information about you and your professional interests, we cannot insure or warrant the security of any information you submit to us. You remain responsible for protecting your user name and passwords and for the security of information in transit to us over the Internet.

Outside Links
 
Our websites contain links to other sites. We are not responsible for the privacy practices or content of such other sites. We encourage our users to be aware when they leave our sites and to read the privacy statements of each website to which we may link that may collect personally identifiable information.

 
Notification and Changes
 

We reserve the right to change the terms of our privacy policy. We will post those changes on this page so that you can always know what information we collect that identifies you, how we use it and under which circumstances we disclose it. You should check this policy frequently to keep abreast of any changes. Your continued use of our products and services covered by this policy constitutes your acceptance of the terms in place at the time of your use.

Computer Security Institute is a subsidiary of United Business Media LLC.

The information that identifies you as an individual may be collected and processed anywhere in the world.

For questions about this privacy policy or our privacy practices , please contact us at:

Computer Security Institute

United Business Media

11 West 19th Street
New York, NY 10011

Email: csi@ubm.com