Ethics is the most important character required to become an information security professional. All information systems security professionals who are certified by (ISC)² recognize that such certification is a privilege that must be both earned and maintained.In support of this principle, all Certified Information Systems Security Professionals (CISSPs) commit to fully support this Code of Ethics. CISSPs who intentionally or knowingly violate any provision of the Code will be subject to action by a peer review panel, which may result in the revocation of certification. There are only four mandatory canons in the code. By necessity such high-level guidance is not intended to substitute for the ethical judgment of the professional. Additional guidance is provided for each of the canons. Read more…
A group of researchers from the U.S. Naval Academy has developed a technique for analyzing email traffic in real-time to identify spam messages as they come across the wire, simply using information from the TCP (Transmission Control Protocol) packets that carry the messages.
This approach could be a useful addition to the arsenal of today’s spam-fighting techniques, observers argue, in that, unlike other typical spam fighting approaches, the content of the email does not have to be scanned.
The work “advanced both the science of spam fighting and … worked through all the engineering challenges of getting these techniques built into the most popular open-source spam filter,” said Massachusetts Institute of Technology computer science research affiliate Steve Bauer, who was not involved with the work. “So this is both a clever bit of research and genuinely practical contribution to the persistent problem of fighting spam.”