A question of security

I was at a conference yesterday (sadly covered by Chatham House Rule so no juicy snippets) which looked at security of public sector ICT systems, and there was a session which was about malware. Although it was delivered in a matter-of-fact deadpan way, it left me feeling just a little bit nervous (and made me check that “Auto Updates” were enabled on my home PCs, as soon as I walked through the door of Chez Fleming).

I’ll tell you a bit more by the end of the week, but one of the debates was about whether people running bigger ICT systems automatically applied updates (eg Windows Update), or tested them first. Now I’m not sure if you can compare universities and central government departments, so I need a bit of input on the poll below before I’m prepared to say any more…

Comments (2)

  1. Ric Davis says:

    I though Chatham House rules allowed you to pass on comments, just with no attribution?

  2. Ray Fleming says:

    Hi Ric,

    You’re right and wrong on this one in your one comment 🙂

    You’re right that the rule allows content without attribution (and I’ll be writing some more on the conference a little later today)

    You’re wrong (on a minor technicality, but it gives me a little bit of victory!). To say "Chatham House rules", which is what most people say, is the error. There is only one Chatham House Rule, so there’s plural.