Richard Forno, 2001-12-12
The commitment by the federal government to further computer security research may be laudable, but it fails to address the root cause of most security issues: bad software.
Colapse all |
Post comment
White House CyberSecurity - Jobs, Research, and Rhetoric, but Few Results
2001-12-12
Anonymous (2 replies)
Anonymous (2 replies)
White House CyberSecurity - Jobs, Research, and Rhetoric, but Few Results
2001-12-21
Anonymous
Anonymous
An interesting point. Educating the public about IT Secuirty is critical. They should offer IT education as a GE requirement/option at the University level. Having IT Directors who specialize can be expensive as well. Outsourcing can me more cost effective. Here's a thought: maybe their could be tax...
[ more ] [ reply ]
[ more ] [ reply ]
National Security Agency's Security-Enhanced Linux should be the foundation
2001-12-13
seeing the forest thru the trees (1 replies)
seeing the forest thru the trees (1 replies)
THE NSA Security-Enhanced Linux project is the ONLY real start such an effort.
http://www.nsa.gov (see security-enhanced linux link here).
FIRST, there has to be a good foundation!
We can't build on old code that is not a reliable foundation (as if we did, then everything that is done will be ...
[ more ] [ reply ]
http://www.nsa.gov (see security-enhanced linux link here).
FIRST, there has to be a good foundation!
We can't build on old code that is not a reliable foundation (as if we did, then everything that is done will be ...
[ more ] [ reply ]
NSA SELinux has nothing to do with this
2001-12-17
Anonymous (1 replies)
Anonymous (1 replies)
I fail to see what SELinux has to do with this. Technology is what got us into this problem in the first place, and we need to take a far more holistic approach. Let's get this straight: It's not about technology, it's about how we use technology, i.e. the people and process aspect.
It comes d...
[ more ] [ reply ]
It comes d...
[ more ] [ reply ]
NSA SELinux has nothing to do with this
2001-12-19
Is there a "safer hex"?
Is there a "safer hex"?
Are "Computer Security" and "Educated User" both Oxymorons?
Computer Security Facts:
Read: Ain't no network strong enough
Master cryptographer Bruce Schneier's "Secrets and
Lies" explains why computer security is an oxymoron.
http://www.salon.com/tech/review/2000/08/31/schneier/
a review of ...
[ more ] [ reply ]
Computer Security Facts:
Read: Ain't no network strong enough
Master cryptographer Bruce Schneier's "Secrets and
Lies" explains why computer security is an oxymoron.
http://www.salon.com/tech/review/2000/08/31/schneier/
a review of ...
[ more ] [ reply ]
White House CyberSecurity - Jobs, Research, and Rhetoric, but Few Results
2001-12-17
MartinK
MartinK
Forno says the Government should ..."hold(ing) vendors accountable for failing to provide appropriate security and availability guidance in the infrastructure design process."
Vendors are going to get religion only when it costs them real money if they don't. Having to fix mistakes on their own d...
[ more ] [ reply ]
Vendors are going to get religion only when it costs them real money if they don't. Having to fix mistakes on their own d...
[ more ] [ reply ]
NSA's SE Linux?
2001-12-31
m3sm3r (1 replies)
m3sm3r (1 replies)
do you really trust the NSA? - can we say "carnivore" and "magic lantern", kiddies?
If security is your foremost concern regarding an OS, why use the tidy little package "Big Brother" provides?
Strikes me as being a bit naive....
[ more ] [ reply ]
If security is your foremost concern regarding an OS, why use the tidy little package "Big Brother" provides?
Strikes me as being a bit naive....
[ more ] [ reply ]
NSA's SE Linux? (please read nsa.gov about first before you flame it)
2002-01-16
Anonymous
Anonymous
NSA SELinux is not a product that "big brother"provides.
It is a project direction suggestion, a challenge to
the Linux OS to become better... and since it is
open source all can review it's code and say yea or nea!
We would really have to worry if NSA proposed SEWindows (because then we woul...
[ more ] [ reply ]
It is a project direction suggestion, a challenge to
the Linux OS to become better... and since it is
open source all can review it's code and say yea or nea!
We would really have to worry if NSA proposed SEWindows (because then we woul...
[ more ] [ reply ]
White House CyberSecurity - Jobs, Research, and Rhetoric, but Few Results
2002-01-12
Anonymous
Anonymous
I agree you can?t trade a dollar for experience. Currently, it?s not, most security folks within the Government (starting at the highest levels) are people who have only the basic knowledge that the CD ROM drive is not a cup holder. Most don?t even have a college education, not that that by itself...
[ more ] [ reply ]
[ more ] [ reply ]
[ more ] [ reply ]