Category Archives: Risk Management

Flaws identified in AES encryption

Advanced Encryption Standard InfoBox Diagram

AES: Drowning or waving?

Researchers identify first flaws in the Advanced Encryption Standard

BY ECM PLUS STAFF

ECM Plus +++ Researchers have found a weakness in the AES algorithm.

According to cryptanalysts, they managed to come up with a clever new attack that can recover the secret key four times easier than anticipated by experts. The attack is a result of a long-term cryptanalysis project carried out by Andrey Bogdanov (K.U.Leuven, visiting Microsoft Research at the time of obtaining the results), Dmitry Khovratovich (Microsoft Research), and Christian Rechberger (ENS Paris, visiting Microsoft Research). Continue reading

Advertisements

Leave a comment

Filed under Business Risk, Content Protection, Content Security, Industry News, Information security, Regulatory Compliance, Risk Analysis, Risk Assessment, Risk Management, Security Content Management (SCM)

EFF launches campaign to protect privacy

Reporters Without Borders Internet censorship ...
Internet censorship around the world

Tor programme to support open internet and protect privacy

By ECM Plus staff

ECM Plus +++ The Electronic Frontier Foundation has just launched a new campaign to promote internet privacy. Dubbed as the ‘Tor Challenge’, the campaign is to encourage Internet users all over the world to support the Tor network by operating relays. Continue reading

Leave a comment

Filed under Data privacy, Data protection, Industry News, Information Governance, Information security, Risk Management, Web governance

FEATURE: GRC – After The Meltdown, Quo Vadis The Fallout?

Former Enron Building, Downtown Houston
Former Enron building in downtown Houston

What is being done to restore confidence in corporate reporting and governance and to avoid future attempts to mislead stakeholders by bolstering systems and process controls?

By PAUL QUIGLEY

When Enron fraudsters were given custodial sentences for their parts in the systemic fraudulent trading activities that epitomised Enron’s fall from grace a decade ago, few could have foreseen that such a sorry chapter in corporate governance could ever plumb such depths of ethical disdain and moral hazard again. Continue reading

Leave a comment

Filed under Asset management, Business Risk, Compliance, Corporate Governance, Corporate Social Responsibility (CSR), eDiscovery, Enterprise Resource Planning & Management, Equity Capital Markets, Features, GRC (Governance, Risk & Compliance), Internal Controls, Regulatory Compliance, Risk Analysis, Risk Assessment, Risk Management, Risk Management, Segregation of Duties (SoD)

FEATURE: Cloud – Your Servers Are Virtualised – Is Your Security?

Virtualization issues are becoming more than just about cost savings

All Your Servers Are Belong To Us

BY ADAM POWERS

From IT consumerisation to user mobility, corporate network and security teams have had their fair share of challenges to deal with over the past few years. These trends have created what is often referred to as the ‘vanishing perimeter’. reducing the efficiency of traditional defences, such as proxy servers, firewalls and IDS/IPS. Continue reading

Leave a comment

Filed under CCM (Cloud Content Management), Cloud Computing, Compliance, Enterprise Cloud, Enterprise Content Management, Features, Hybrid Cloud, IaaS (Infrastructure-as-a-Service), PaaS (Platform-as-a-Service), Private Cloud, Public Cloud, Regulatory Compliance, Risk Management, SaaS (Software-as-a-Service), Trusted Cloud, Virtualization, VM2VM, VPS Cloud

FEATURE: The box that could break your business

Road tunnel on the way to Iron Mountain, Black...

On the way to Iron Mountain

Why it is time to take your information management seriously

BY CHRISTIAN TOON

The way you handle your information could represent a ticking time bomb for your business. If you routinely store your paper documents on office premises, you may be wasting thousands of pounds that could be better invested elsewhere in the business. Continue reading

Leave a comment

Filed under Data storage, Document Management, Features, Information Management, Risk Management

Gone in a Flickr: coveted content consigned to cloud cuckoo-land

Wordmark of Flickr

Gone in a Flickr

Ve haff vays of mekking you veep! Yahoo’s Flickr fsck-up sends shock waves through cloud content communities

BY PAUL QUIGLEY

ECM Plus – Just when you thought it was safe to entrust all the crown jewels of content to the cloud, along comes a yarn that send shivers down your spine and makes the hairs on the hairs on the back of your neck stand on end. Call it asset stripping, call it digital downsizing, call it what you will, all such expressions of loss pale into insignificance on hearing the news of this one poor German fellow who watched helplessly as four years worth of thousands of his priceless photos were consigned to the ‘Great Recycle Bin’ in cyberspace following a bizarre sequence of events which culminated in cloud image behemoth Flickr deleting all his precious pictures in one fell swoop at the push of a button. Vamoosh! Gone… Continue reading

Leave a comment

Filed under CCM (Cloud Content Management), Disaster Recovery, Industry News, Public Cloud, Risk Management, SaaS (Software-as-a-Service), Social Content Management

NEWS: Kofax does US$200,000 invoice processing deal with tech conglomerate

Invoice system automates processing of four million documents annually

BY PAUL QUIGLEY

ECM Plus +++ Kofax, the specialist in document-driven business process automation has announced a new contract to provide an enterprise capture solution to a leading global technology firm. The value of the contract to Kofax exceeds US$200,000, the company said.

The customer, a manufacturer of safety, security and energy products and services, will implement Kofax Capture and Kofax Transformation Modules to scan and capture four million invoices and related accounts payable documents it receives annually. Continue reading

1 Comment

Filed under Business process automation (BPA), Business Process Re-engineering (BPR), Document archiving & retrieval, Document Automation, Document Management, Document scanning & imaging, eDiscovery, Enterprise Resource Planning & Management, Records & Information Management (RIM), Regulatory Compliance, Risk Management, Scanning, Vendor News, Workflow

FEATURE: Key considerations for ‘cloudsourcing’ contracts – CAMM

Cloud computing sample architecture

Cloud computing sample architecture

BY JOHN WALKER

Economics dictates that the CEO, and CFO have a balancing act delivering security, and quality operational services, whilst at the same time, attempting to reduce the organisational and operational costs of delivering the business’ mission.

One opportunity in focus is that of ‘CloudSourcing’, where, depending on the size and type of business, they may be considering engaging in a contract in which part, or all, of their operations are placed into the hands of a Cloud Provider, be this SaaS, PaaS, IaaS or any other such ‘Anything-as-a-Service’ that may accommodate the operational model. Continue reading

Leave a comment

Filed under Business continuity, Cloud Computing, Compliance, Consultancy/Consulting/Systems Integration, Content Security, Data centres, Disaster Recovery, Features, High Availability, Hybrid Cloud, IaaS (Infrastructure-as-a-Service), Information Governance, Information Management, Information security, PaaS (Platform-as-a-Service), Private Cloud, Public Cloud, Regulatory Compliance, Risk Management, SaaS (Software-as-a-Service), Security Content Management (SCM), SIP, Telecommunications, Virtualization, VPS Cloud