GRT Successes

Get Adobe Flash player

 

"GRT’s methodologies for accomplishing the project goals were reflected in the way their people performed on the project, and they always produced the highest quality results"  more»

 

What is Data Masking

Data masking is the process of obscuring (masking) specific data elements that identify an individual, potentially exposing customers or employees to prevent theft or other forms of privacy invasion. It ensures that sensitive data is replaced with realistic but not real data. The goal is that sensitive customer information is not available outside of the authorized environment.  more»

 

Follow Us

        


data security, regulatory and privacy management

Compliance, Security, Data Masking, New York, Connecticut, New Jersey, Massachusetts, Rhode Island

GRT provides expert IT Risk Management, Data Security, Data Privacy, Data Masking and Regulatory Compliance consulting services to companies in the United States and arround the world.

data security, regulatory and privacy management

business intelligence, operational, analytic and business reporting

Business Intelligence, New York, Connecticut, New Jersey, Massachusetts, Rhode Island

GRT assists you in development, design and implementation of a data warehouse and business intelligence strategy that ensures common framework across the enterprise.

business intelligence, operational, analytic and business reporting

Information strategy, gap analysis, tactics, design and implementation

Data Warehouse and Business Intelligence Staffing Solutions, New York, Connecticut, New Jersey, Massachusetts, Rhode Island

GRT is a leader among expert staffing solutions in IT functions associated with Data Security, Business Intelligences and Data Warehouse. We help you meet your information management consulting and staffing needs.

Information strategy, gap analysis, tactics, design and implementation

Intel (Chip Security Flaw) Inside

Submitted by WebAdmin on Wed, 06/27/2012 - 21:13

Intel (Chip Security Flaw) Inside Widely used processor chips from Intel turn out to have a security flaw that could allow hackers to take control of a computer at its most basic operating levels.

The takeoffs on the chipmaker's "Intel Inside" slogan write themselves. But this is also one more teachable moment about a fundamental fact of security: You cannot count on vendors to do your security work for you.

The flaw in Intel chips was reported in a security advisory by the US Computer Emergency Readiness Team (US-CERT).

According to US-CERT's advisory, 64-bit operating systems running on these Intel processor chips are subject to a "local privilege escalation attack." Such an attack gives kernel privileges to malicious code, allowing it to act directly on the hardware-software interface.

The flaw is associated with a specific machine instruction, SYSRET. This instruction is part of the x-86-64 standard defined by ARM. But if an operating system written around ARM's specs is run on an Intel processor, it can allow an attacker to write to arbitrary memory addresses – bypassing key internal protections.

Windows 7 and Windows Server 2008 R2 are among the affected operating systems. AMD chips are free of this behavior, as are all 32-bit systems.

One security lesson here is that hardware as well as software can have flaws that provide an entry point for attackers. An even more basic security lesson is that weak points can slip through the development processes even of the largest vendors.