Category: Blogs
The Chief Architect’s Blog
It’s October 2017 and The SABSA Institute is launching a new blog by John Sherwood, the Chief Architect and original creator of SABSA and the lead author of the book Enterprise Security Architecture: A Business Driven Approach, in which the SABSA framework is described. The book was published in 2005 and much work has been done since then to extend […]
The Attributer’s Blog – Private
The introduction of GDPR (General Data Protection Regulation) in 2018 in the EU raises some new challenges for those involved in controlling and processing personal data, but it is also a great case study in risk ownership and governance. It demonstrates some concepts and principles that have long been central in the SABSA way of thinking. In this article we […]
The Attributer’s Blog – Tears-Free
You wanna cry? Been staring at a ransomware screen? The Attributer hopes not, but we all know it happened to a lot of people. So, what can we learn from this global incident and what should we do about protecting ourselves in the future? Three years ago The Attributer wrote an article named ‘Patched’. We shall re-examine some of the […]
The Attributer’s Blog – Capable
There have been numerous media reports in recent times about the cyber-attack capabilities of nation states hostile to Western political and business interests. That of course raises the debate about our cyber-defence capabilities and what they should be in this emerging threat landscape. In particular some commentators have raised the issue of the purpose and motive on the part of […]
The Attributer’s Blog – Traceably Owned
Today’s big buzzwords are ‘blockchain’ and Bitcoin, but the concept has been around since the 1990s. The Attributer himself in 1998 was consulting for one of the companies involved in the Bolero consortium, a project to digitise and dematerialise paper bills of lading (BoLs). A BoL is a negotiable financial instrument. Ownership of the bill means ownership of the cargo […]