NIST Seeks New Hash Algorithm
NIST is wrapping up accepting submissions for a new cryptographic one-way hash algorithm today. NIST's competition follows a tradition of peer review, public discussion, and acceptance of algorithms that brought us DES, SHA, and AES. The selection process won't be complete until 2012, but final selection should addresses weaknesses in the hash algorithms used today.
Survey Shows Disconnect On IT Policy
Cisco follows up on its survey on data leakage, which I already wrote about, and an analysis of policy effectiveness. There isn't too much surprising in the findings, but the results continue to highlight the need for sound security policy management processes in organizations and,
The PCI Protection Racket
A hotel operator says his point-of-sale vendor is using PCI as an excuse to force expensive upgrades to POS equipment.