Terry Gold will be speaking at the annual ISC West physical security conference in Las Vegas on April 18th, 2018. The Session, "The Future of Physical Security: The Decade Ahead" will draw from his recent research in working closely with some of the largest end user organizations to understand … [Read more...]
IDanayst is now D6 Research. The Rebranding…
OK folks. You are now getting redirected to a new website with a new name, emails sent from a D6 domain, etc. We are the same company, but with a new name. Why the change and what does this mean? This has been in the works for about a year and were waiting for the nod from the US Patent and … [Read more...]
The Physical Security Program Maturity Model
Both physical security and information security have the word “security” in common, but historically, that’s where the similarities stop. However, that’s changing today—and it’s driven by necessity. Some security professionals are getting dragged kicking and screaming into the new era, while others … [Read more...]
Making Sense of the Biometric Hype
After specializing in the identity and authentication space for the past 15 years, I can say that in the biometric industry, they always seem to say "this is the big year". It references biometrics going mainstream and mass scale from one where its only pervasive acceptance has been physical … [Read more...]
The Sony Hack: Credential Crisis in Context
Sony getting hacked shouldn't surprise anyone. Not because it is Sony, but rather because its just an exclamation point to 2014 already being "the year of the hack". Personally, several things standout as to what is and is not unique, and lessons we can take away. First, Sony is not unique, … [Read more...]
Defining Physical Access Control Standards
I engage in a variety of conversations in physical access that span manufacturers, integrators and end users in the physical access control space about systems that must live for the next decade or two. Traditionally, technology decisions had been made with a heavy influence from existing … [Read more...]
Exploiting Full Disk Encryption & How to Mitigate
Full disk-encryption is viewed by some enterprises as a cure all for laptop security. Many organizations have requirements that at least some systems be encrypted – especially those that are used by individuals that might have access to sensitive and/or proprietary information. Taking things a step … [Read more...]
Identification-as-a-Service 101 (IDaas)
The following article was originally written by Terry Gold in RE:ID Magazine for their Spring Issue (Hard Copy). It is meant to share Terry's experience in pioneering the commercial IDaaS market as well as fundamentals and current-state of the market. A detailed research report will be released in … [Read more...]
Replacing Passwords with RFID Cards: A Step Backward
Editor's Note: We have received several requests to post the full version of the paper without requiring a download. If you prefer to read that (includes analysis and supporting concepts), it can be found here. Alternatively, It can be downloaded in PDF by clicking the box at the bottom. While … [Read more...]
Unauthorized access to your DataCenter. Easier than you think.
Your an information security professional and need to make sure that your digital assets are secure. You are on top of it. However, you leave the decisions of securing your physical assets (servers, HSMs, racks, backup, etc.) to someone else. Are you aware of what systems are preventing someone … [Read more...]
