RE: Mile2 Training (Certifications)

From: Ken Kousky (kkousky@ip3inc.com)
Date: Sun Jul 15 2007 - 09:00:38 EDT


When exploring certification programs it's also important to note that
ANSI/OSI have a standard for the certification of professional licensing and
certification programs. The ANSI/OSI framework does not allow for this kind
of approach, where you have to buy a specific training product or program.

A professional licensing process should be an independent test of
competencies and not a measure of the training program an individual
purchases.

The DoD 8570 directive endorses ANSI/OSI certified certification programs -
I think for this reason. It's not buying training but establishing
competencies that matters.

It's what you know, not what you buy. I think mostgood professional
certifications are moving in this direction.

We still have a long way to go before the processional standards for
competency are clearly codified. Right now, the targeted skills continue to
evolve with the exploits but we're starting to better understand the need
for foundation skills and then specific applications of these skills.

KWK

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of Clement Dupuis
Sent: Friday, July 13, 2007 7:18 PM
To: ppsih@hol.gr; 'Pete Herzog'
Cc: 'Serge Vondandamo'; pen-test@securityfocus.com
Subject: RE: Mile2 Training (Certifications)

There are lots of unethical people out there that will say to their
advantage that you MUST take the class.

This is simply because they are trying to sell you something.

As it was explained previously it is possible to take it by filling a form
to get your minimum of 2 years experience recognize.

Do take care

Clement

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of ppsih@hol.gr
Sent: Friday, July 13, 2007 4:24 AM
To: Pete Herzog
Cc: Serge Vondandamo; pen-test@securityfocus.com
Subject: Re: Mile2 Training (Certifications)

Hi,

Well, I am also in Europe and a CEH instructor, and I do not know
anything about such a requirement. In fact, I do have a couple of
friends that gained their certification without attending the course.

Regards,
Panayiotis

Quoting Pete Herzog <lists@isecom.org>:

> No, I am sure in Europe you MUST take the CEH course to sit for the CEH
> exam (I have heard this from CEH instructors and have just searched and
> found it at Wikipedia:
> http://en.wikipedia.org/wiki/Certified_Ethical_Hacker. This is NOT
> true of the OPST or OPSA. In France you can sit for just the exam by
> contacting Dreamlab Technologies: www.dreamlab.net.
>
> Sincerely,
> -pete.

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Swap Out your SPI or Watchfire app sec solution for
Cenzic's robust, accurate risk assessment and management
solution FREE - limited Time Offer

http://www.cenzic.com/c/wf-spi
------------------------------------------------------------------------

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Swap Out your SPI or Watchfire app sec solution for
Cenzic's robust, accurate risk assessment and management
solution FREE - limited Time Offer

http://www.cenzic.com/c/wf-spi
------------------------------------------------------------------------

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Swap Out your SPI or Watchfire app sec solution for
Cenzic's robust, accurate risk assessment and management
solution FREE - limited Time Offer

http://www.cenzic.com/c/wf-spi
------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:56 EDT