Gerry and Steve discuss MITRE’s new CVSS scoring guide for medical devices that is currently out for comments and what it could mean for healthcare. They cover a trending issue of unethical behavior using Apple watch to cheat on exams, and they round out the show covering Apple’s revoking the enterprise certificates issued to Facebook and Google for internally developed apps because of abuse.

Show Notes

Resources:

Facebook and Google distributed what amounts to self-signed apps for iOS users which violate Apple’s AppStore ToS, making the giant fruit very unhappy.
https://arstechnica.com/gadgets/2019/01/facebook-and-google-offered-gift-cards-for-root-level-access-to-ios-users-data/

Mitre, the think tank regularly associated with vulnerability scoring, has a draft rubric for assigning CVSS to medical devices. Think you can help?
https://www.mitre.org/publications/technical-papers/rubric-for-applying-cvss-to-medical-devices

The Apple Watch is the latest way to cheat in school. Are your policies flexible enough to combat the threat?
https://theoutline.com/post/7030/rich-kids-are-cheating-in-school-with-apple-watches

One Cool Things

Thank You For Arguing. What Aristotle, Lincoln And Homer Simpson Can Teach Us About The Art Of Persuasion by Heinrichs, Jay 

Monday February 4, 2019 Stormcast, Discussing Bitcoin money laundering

https://isc.sans.edu/podcastdetail.html?id=6356

Contact

Email infosecicu@musc.edu

Twitter: