SAN FRANCISCO - Windows NT is being widely deployed throughout large corporations and government agencies. But how secure is it? Is NT part of the problem or part of the solution? Perhaps the only honest answer is both. The Computer Security Institute (CSI) has devoted a significant portion of the Spring 1999 issue of its quarterly Computer Security Journal (CSJ) to an exploration of NT's vulnerabilities and opportunities vis-a-vis network security.

The Spring CSJ (Vol. XV, No. 2, Spring 1999) features two important contributions.

Dr. Eugene Schultz, Ph.d., CISSP, of Integrity Solutions International, a subsidiary of Science Applications International Corp. (SAIC) and the instructor for CSI's highly popular class on "Windows NT Security," offers "Advanced Windows NT Security: Password Security," the first in a two-part series.

Plus, a CSI Roundtable consisting of Rik Farrow, instructor for CSI's new class on "Intrusion Attacks and Countermeasures," A. Padgett Peterson of Lockheed-Martin Corp. (Orlando, FL), Dominic Brezinski of Secure Computing (Minneapolis, MN) and Phil Moyer of Hyperon, Inc. (Wilmington, DE) engages in a wild and insightful dialogue on the problems that NT brings with it.

The Spring '99 CSJ also includes a comprehensive "Intrusion Detection Product Criteria" from Steve Lodin of Ernst and Young, LLP as well as the results of the fourth annual "CSI/FBI Computer Crime and Security Survey."

The Computer Security Journal, now published quarterly, is one of the many benefits of membership in the Computer Security Institute, such as the 10-page monthly Computer Security Alert.

Non-members can purchase individual issues for $25 each. To order, call 415-947-6320.