Posts Tagged ‘Security’

So I am now the proud owner of a letter sized drivers license

Monday, July 13th, 2009

VA recently changed over to a new secure drivers license, so instead of printing them in the DMZ office, they just take your photo and then mail you the new card. So my drivers license is now a letter sized piece of paper until the new card gets mailed to me.

So I have some issues with this, first lets look at the practical side of this. I now have to carry a piece of paper with me when I drive. The letter sized paper doesn’t fit in my wallet. I could leave it in my car, but I don’t always drive the same car. Someone during this process must have thought, man that’s going to be a pain, lets give them something that will go in their wallet? Now here is the strange thing I know they can do it, when I did a change of address a couple years back I got a card that you could cut it down so it fit in your wallet, and carry with your drivers license.

Then I look at the reason they are going to the new secure printing center, they are doing it in the name of security, that might be all great, and the new card may be more secure, but as part of that they have now introduced a new proof of drivers license that is, 1) printed on normal paper, 2) has my signature, 3) has a rubber stamp on it saying paid, the date, and 6 character identification number on it, and thats it. It wouldn’t be very hard to make a fake version of it. So on one hand you have a nice secure card, on the other you have a piece of paper. So which do you think the forgers are going to copy? The only compensating control is that all the local cops have computers in their car so they can look up the license information, that might bring up my photo as well, but what happens when you are in a dead zone or in a different state, you are now back to proving a piece of paper is really a drivers license.

Finally, what is going to happen when I fly or go drinking. They are going to take one look at my expired license and tell me it is expired, I highly doubt they are going to going to accept a piece of paper as proof that it isn’t really expired, and I am just waiting on a new one.

Bruce Talking on Bag Searches on the metro

Friday, October 31st, 2008

It was only a matter of time after I posted this, I just wasn’t expecting this 🙂

Wash Post

Security specialist Bruce Schneier will be online Friday, Oct. 31 at noon ET to answer your questions about the effectiveness of Metro’s new policy to search the bags of passengers before allowing them in a station.

Submit your questions and comments before or during the show.

Schneier is a noted cryptographer and security consultant. He’s the author of several books, including “Beyond Fear” and his newest, “Schneier on on Security.” He blogs at Schneier on Security, where he has written about the random bag searches implemented by the New York Subway system.

Wednesday, March 15th, 2006

I spent that last 2 days that the Institute for applied network security forum in Tysons Corner VA. If you are into computer security check out their web site The conference is more about meeting and discussing issues with your peers than attending lectures. It was very refreshing. I also gave a 15-20 min presentation on vulnerability management.

One of the items that came up was how to aduit password strength in Active Directory. Someone mentioned Lofphtcrack, but according to this Symantec recently killed it off.