Most of the computer security white papers in the Reading Room have been written by students seeking GIAC certification to fulfill part of their certification requirements and are provided by SANS as a resource to benefit the security community at large.

I’m a big fan of the Reading Room as it’s a good way to get information that you would typically have to pay to get via formal training. Here are some papers from the SANS Information Security Reading Room that were recently published:

• Windows Vista: First Steps
• NSS Vs NDS
• Certification and Accreditation: A madmans dilemma – Costs
• Certification and Accreditation: A madmans dilemma – Controls
• Certification and Accreditation for Dummies
• Certification and Accreditation (C&A) Vs System Development Life Cycle Management (SDLC)
• NFS Security in Both Trusted and Untrusted Environments
• Detecting and Preventing Unauthorized Outbound Traffic
• The challenge of securely storing and transporting large files across a corporate Wide Area Network
• Log Management SIMetry: A Step by Step Guide to Selecting the Correct Solution
• Data Leakage – Threats and Mitigation
• ANI vulnerability: History repeats