Peer Reviewed Papers

2012 (Accepted)

• Wright C (2012) “Hacktivism, terror and the state: The Importance of Effectively Enforcing Cyber Security Legislation.” National Security Australia 10 Au

2011

• Wright, C (2011) “Who pays for a security violation? An assessment into the cost of lax security, negligence and risk, a glance into the looking glass.” ICBIFE, HK
• Wright, C (2011) “Current issues and liability facing Internet Intermediaries.” ICBIFE, HK
• Wright, C (2011) “Criminal Specialization as a corollary of Rational Choice.” ICBIFE, HK
• Wright, C (2011) “Exploiting format Strings with Python” Hakin9
• Wright, C (2011) “More Exploits with Python” Hakin9
• Wright, C & Via, T (2011) “Modeling System Audit as a Sequential test with Discovery as a Failure Time Endpoint” ICBIFE, HK
• Wright, C (2011) “A preamble into aligning Systems engineering and Information security risk measures” ICBIFE, HK
• Wright C (2011)”Of Black Swans, Platypii and Bunyips. The outlier and normal incident in risk management.” CACS2011 Australia
• Wright C (2011) & Zia, T ”Compliance or Security, what cost? (Poster)” ACISP, AU
• Wright C (2011) “A comparative study of attacks against Corporate IIS and Apache Web Servers” Sans Technology Inst, USA
• Wright C (2011) “Rationally Opting for the Insecure Alternative: Negative Externalities and the Selection of Security Controls” Republished and extended Paper, Sans Technology Inst, USA
• Wright C (2011) “Rationally Opting for the Insecure Alternative: Negative Externalities and the Selection of Security Controls” Republished and extended Paper, Sans Technology Inst, USA
• Wright C & Zia T (2011)”Rationally Opting for the Insecure Alternative: Negative Externalities and the Selection of Security Controls” CISIS Spain
• Wright C & Zia T (2011)”A Quantitative Analysis into the Economics of Correcting Software Bugs” CISIS Spain

2010

• Wright C (2010) “Software, Vendors and Reputation: an analysis of the dilemma in creating secure software” Intrust 2010 China
• Wright C & Zia T (2010) “The Economics of Developing Security Embedded Software” SecAU Australia
• Wright C (2010) “The not so Mythical IDS Man-Month: Or Brooks and the rule of information security” ISSRE USA
• Wright C (2010) “Packer Analysis Report – Debugging and unpacking the NsPack 3.4 and 3.7 packer.” Sans Technology Inst, USA

2009

• Wright C (2009) “Effective Patch Management - Saving Time and Getting Better Security” MISTI USA
• Wright C (2009) “Database Auditing” Testing Experience, Germany
• Wright C (2009) “SaaS Security” MISTI USA
• CISecurity (Multiple) (2009) CIS BIND Benchmarks” Centre For Internet Security, USA

2008

• Wright C, Kleiman D & Sundhar R.S. (2008) “Overwriting Hard Drive Data: The Great Wiping Controversy” Lecture Notes in Computer Science (Springer Berlin / Heidelberg)
• Wright C (2008) “Detecting Hydan: Statistical Methods For Classifying The Use Of Hydan Based Stegonagraphy In Executable Files” Sans Technology Inst USA
• Wright C (2008) “Using Neural Networks” Google
• Wright C (2008) “Ensuring secure data transfer and data sharing” DQ Asia Pacific
• Wright C (2008) “Record and Document Destruction in a Digital World” IT Security World, USA
• Wright C (2008) “Managing Security in a Global Company” IT Security World, USA
• Wright C (2008) “A Quick and Nasty overview of finding TrueCrypt Volumes” Sans Technology Institute
• Wright C (2008) “Exploring Data Visualisation” Strategic Data Mining
• Wright C (2008) “Statistical Methods to Determine the Authenticity of Data” CACS2008, Au
• Wright C (2008) “Text Data Mining, the future of Digital Forensics” Hex Journal USA
• Wright C (2008) “Compliance, law and Metrics: What you need to meet and how you prove it” SANS ACT
• Wright C (2008) “Current Issues in DNS” Sans Technology Inst, USA
• Wright C (2008) “Advanced Methods to Remotely Determine Application Versions” NS2008 LV, USA
• Wright C (2008) “An in-depth review of the security features inherent in Firefox 3.0 Compared to IE 8.0” iDefense, USA

2007

• Wright C (2007) “The Problem With Document Destruction” ITAudit, Vol 10. 10 Aug 2007, The IIA, USA
• Wright C (2007) “Requirements for Record Keeping and Document Destruction in a Digital World” Sans Technology Inst, USA
• Wright C (2007) “Electronic Contracting in an Insecure World” Sans Technology Inst, USA
• Wright C (2007) “The Problem with Document Destruction” IRMA UK (Republished)
• Wright C (2007) “Ethical Attacks miss the point!” System Control Journal ISACA
• Wright C (2007) “Where Vulnerability Testing fails” System Control Journal ISACA
• Wright C (2007) “Application, scope and limits of Letters of Indemnity in regards to the International Law of Trade” Internal Publication, BDO Aug 2007
• Wright C (2007) “UCP 500, fizzle or bang” Internal Publication, BDO July 2007

2006

• Wright C (2006) “Port Scanning A violation of Property rights” Hakin9
• Wright C (2006) “A Taxonomy of Information Systems Audits, Assessments and Reviews” SANS Technology Inst USA
• Wright C (2006) “RISK & Risk Management” 360 Security Summit AU
• Wright C (2006) “A QUANTITATIVE TIME SERIES ANALYSIS OF MALWARE AND VULNERABILITY TRENDS” Ruxcon AU

2005

• Wright C (2005) “Analysis of a serial based digital voice recorder” Published 2006 SANS Technology Inst USA
• Wright C (2005) “Implementing an Information Security Management System (ISMS) Training process” SANS Darling Harbour AU
• Wright C (2005) “Beyond Vulnerability Scans — Security Considerations for Auditors” ITAudit, The IIA, USA
• Wright C (2005) “PCI Payment Card Industry Facts” Retail Industry journal, July 2005

2001

• Multiple Authors (1999) “Windows NT Security Step by Step” SANS Technology Inst USA

2000

• Ashbury A & Wright C (2000) “DNS Security in Australia” Net Security, June 2000.

1999

• Wright C (1999) “A Comparative analysis of Firewalls” in “The Internet Hot Sheet” ATT Sept 1999

Books by our Chairman
Strasan’s chairman Dr. Craig Wright has published a number of books over the years.



Books / Book Chapters
The following list relevant books and book chapter that the applicant has published.

• Wright C (2008) “The IT Regulatory and Standards Compliance Handbook: How to Survive Information Systems Audit and Assessments” Syngress USA
• Litchko, J; Lang, D; Hennell , C; Wright, C & Linden, M V (2011) ““Official (ISC)2 Guide to the CISSP(R)-ISSMP(R) CBK” CRC Press, ISC2 USA
• Kleiman, D; Wright, C; Varsalone, V& Clinton, T (2007) “The Official CHFI Study Guide” (Exam 312-49) (Paperback)” Syngress, USA 2007

This book is used as a text for ITE-513 at Charles Sturt University

• Multiple Authors (2009) “Cisco Router and Switch Forensics: Investigating and Analyzing Malicious Network Activity”, Syngress Press
• Multiple Authors (2009) “Mobile Malware Attacks and Defense”, Syngress Press
• Multiple Authors (2008) “Check Point NGX R65 Security” Syngress, USA

This book is used as a text at Charles Sturt University

• Multiple Authors (2008) “Mobile Malicious Code” Syngress, USA
• Multiple Authors (2008) “Best Forensic Book” Syngress, USA

In 2012 the following book will be published by Taylor Francis Academic press:

• SCADA Security.

Webinars / Lecture Series

The following are webinar series that are being offered and have been developed.

• IPv6 Security
  • Presented in 2011
  • ACT and Victoria Live
  • 1&2 day live presentation
  • Has been provided to 15 Commonwealth Government Departments
• ITE-514 CISSP (Charles Sturt University)
• ITE-513 Digital Forensics (Charles Sturt University)
• ITE-516 CEH Pen Testing (Charles Sturt University)
• Cyber(crime, terror, espionage)
  • A 24 part lecture series offered fortnightly
  • 24 x 1 hour lectures
• REM - Reverse Engineering Malware (12 lectures)
• Cloud Security (6 lectures, 1 summary lecture)
• Digital Forensics and the law
• Management and IT (Various)

<<Back