UK Government Department of Trade & Industry Information Security Breaches Survey web-site.

ACM Crossroads is the student magazine of the Association for Computing Machinery. Crossroads has published several articles about computer security, as listed in this index.

Column: Security for Wide-Area Internet Routing. Nick Feamster.

A compilation of bibliographic references and links to influential papers relating to anonymity.

This page contains links to all the information security articles the author has written on Linux security, vulnerabilities, people issues of infosec and others topics.

White papers, tutorials and source code about secure programming, bugs, buffer overflows, user-supplied format string, exploit coding, shellcode programming and assembly. (English and Español)

Vulnerability Notes published by the CERT Coordination Center.

the Electronic Newsletter of the IEEE Computer Society Technical Committee on Security and Privacy.

Complete text of the book by the System Security Study Committee, National Research Council, U.S, that presents a comprehensive agenda for developing nationwide policies and practices for computer security.

Monthly computer security newsletter written by Bruce Schneier.

Monthly e-mail newsletter written by Bruce Schneier. Back issues available on site.

Provides information security executives with high-level information, best practices and strategic insight.

Monthly newsletter targeted at people who need a strategic, multi-year view of the information security industry.

A methodology for avoiding the security holes that drive you mad, an article from SunWorld.

Provides a central repository for computer crime and Internet security statistics, reports, trends, and news. Also has numerous security awareness tools, including an online industry best practice password strength meter.

Monthly print magazine for information security managers and others responsible for the daily, efficient operation of security policies, procedures, standards, and practices.

Infosecurity Today focuses on the practical experiences of IT security professionals, provides analysis of current tends, independent reporting, and more.

A gentle introduction to the complex topic of network security. Geared especially toward those new to security, including end users and management.

Article examining the evolution of malicious agents by analyzing features and limitations of popular viruses, worms, and trojans, detailing the possibility of a new breed of malicious agents currently being developed on the Internet.

Information on trusted product security evaluations, the criteria and processes used for evaluations (TCSEC and Common Criteria), and the programs supported by the Center.

Windows, unix, netware, WWW, firewalls, intrusion detection systems, security policy, books, papers, and articles.

The Computer Security Resource Clearinghouse (CSRC) is designed to collect and disseminate computer security information and resources to help users, systems administrators, managers, and security professionals better protect their data and systems.

Online counterpart to Secure Computing monthly magazine. Provides product reviews, solutions and articles for the systems security professional.

Quarterly publication focused on digital security business issues, metrics, and investments. Published by @stake.

Provides questions and answers to the most commonly asked security questions without the techno words

Publication of ISO 17799 provided a milestone in the evolution of information security. This site provides background, information and resources on this important standard.

Contains a summary of the DoD's "Trusted Computer System Evaluation Criteria" (Orange Book) - if you've ever wondered what a C2 security rating is, this is the place to find out.

Free, quarterly e-magazine offers a variety of articles for both information security managers and technical staff.

A collection of network security tutorials. Users can add their own security tutorial to the collection.