Data Security Podcast Episode 40 – Feb 16 2009

The Data Security Podcast is the place for 30 minutes of news every week on data security, privacy, and the law.

This weeks program: Data leaks at Google Calendar? Are so-called smart electric meters a 4th Amendment violation? Plus, this week’s news.

–> Stream, subscribe or download Episode 40 – Listen or subscribe to the feed to automatically get the latest episode sent to you to your Google, Yahoo, iTunes, or other popular sites.

–>Tune into the show directly on iTunes, you can also subscribe to the program on iTunes.

This week’s show is sponsored by The Engate Hosted eMail Security System. Tell them you heard about them on the Data Security Podcast and get 50% off their service. Offer good until March 31st, 2009. Tales from The Dark Web Sponsored by DeviceLock Removable Media Security Software.

The Show Notes Page for Episode 40

-From The News: Are RFID-enabled Passport PASSCards, and Enhanced Driver’s Licences vulnerable to war driving attacks that threaten personal information? Chris Paget, RSA, students at MIT, Washington Universtity, and many others have reasearched the vulnerabilities in most deployments of RFID. Here is a video of Chris’ $250 “war driving” for PASSCard RFID Passport cards issued by the United States:

-From The News: Meta Data Exposed…read the AP story about the lawsuit.

-From The News: Virut reverse engineering by Nicolas Brulez,  of Websense Security Labs

– Tales From The Dark Web: Google Calendar suffers data ‘leak’

– Conversation: Samantha talks with USC Law Professor Jack Lerner about demand response untility metering, and why law enforcement (and criminals) might be interested in your electric enerty usage. Read more in this Stanford Technology Law Review Article, mentioned in the show.
CLARIFICATION:   Professor Lerner notes that demand response is a very promising technology and that the California Energy Commission and California Public Utilities Commission have engaged in fact finding related to the privacy and security implications of demand response technology.  In addition to the article we referenced in this program, which Professor Lerner wrote with Professor Deirdre Mulligan, Professors Lerner and Mulligan contributed to a study prepared for the California Energy Commission’s Public Interest Energy Research Group titled “Network Security Architecture for Demand Response/Sensor Networks.”

– Wrap Up: Get this… Microsoft is offering a $250,000 reward for information leading to the arrest and conviction of those responsible for the Conficker worm. Hey, Microsoft, how about telling us HOW and WHO to contact with the information, because you didn’t include THAT info in the press release, and we can’t find it anywhere on the web, or on your site!

One Response to “Data Security Podcast Episode 40 – Feb 16 2009”

  1. […] The News:  Although we have been covering this story from a different angle, CNN did get an interview with Ed Skoudis (SANS security expert) on the […]

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: