US Nuclear Missile Silos Use Safe, Secure 8" Floppy Disks
Hugh Pickens DOT Com (2995471) writes "Sean Gallagher writes that the government built facilities for the Minuteman missiles in the 1960s and 1970s and although the missiles have been upgraded numerous times to make them safer and more reliable, the bases themselves haven't changed much and there isn't a lot of incentive to upgrade them. ICBM forces commander Maj. Gen. Jack Weinstein told Leslie Stahl from "60 Minutes" that the bases have extremely tight IT and cyber security, because they're not Internet-connected and they use such old hardware and software. "A few years ago we did a complete analysis of our entire network," says Weinstein. "Cyber engineers found out that the system is extremely safe and extremely secure in the way it's developed." While on the base, missileers showed Stahl the 8-inch floppy disks, marked "Top Secret," which is used with the computer that handles what was once called the Strategic Air Command Digital Network (SACDIN), a communication system that delivers launch commands to US missile forces. Later, in an interview with Weinstein, Stahl described the disk she was shown as "gigantic," and said she had never seen one that big. Weinstein explained, "Those older systems provide us some, I will say, huge safety, when it comes to some cyber issues that we currently have in the world.""
Those older systems provide us some, I will say, huge safety, when it comes to some cyber issues that we currently have in the world.
No, they don't. Claiming obsolete hardware and software is more secure is just a thinly veiled security through obscurity claim. There are other claims here; the machines are airgapped, and I suspect that the physical site security is pretty good; but the use of old software and hardware adds nothing at all to that.
The silo wins the security battle through two things:
1) Physical security
2) Not being on the Internet
Yes, it's old stuff. Who cares? Nobody can touch it, and it's not on the global network. Not much else is required.
Not so much. This is actually more along the lines of "If it aint broken, don't fix it".
Some systems are so deeply entrenched that replacing them often becomes a nightmare and you are not necessarily gauranteed with a more stable, robust replacement system.
Even though some of these systems are old, they are often very very stable.
Loving the sarcasm, but seriously, these antiquated systems are probably a lot more secure than many modern systems. After all, it's next-to-impossible to hack one of these missile control systems if they're not connected to the internet and code must be loaded on 70's era floppy disks (which are next-to-impossible for Joe Bloggs to get hold of)
Sure, it's terrible energy-inefficient, and the support costs must be through the roof, but i'm more comfortable knowing that the missile control systems are running on pre-internet (and even ARPANET?) systems. It means the many enemies of the US cannot just hack into the missile control systems and start armageddon. No internet, no hacking, no problem.
If you gave me a choice between a printer and a giraffe with explosive diarrhoea, i'll get my ladder and my raincoat
"Galactica is a reminder of a time when we were so frightened by our enemies that we literally looked backward for protection"
Show me on the 1st Amendment bobblehead where the moderator touched you...
It was interesting, that also in BSG they claimed that the fleet did have much newer starships - the Galactica was being decommissioned due to being obsolete.
All those other starships in the fleet perished quickly due to network infiltration by the Cylons. The only remaining operational hardware was the non-networked stuff.
retrorocket.o not found, launch anyway?
Its not security via obscurity because the real security doesn't rely on the lack of 8" floppies. The real protection is a) not being hooked up to the internet, b) lots of doors & guys with weapons standing between you and the control station. But I guess if some airforce commander throws a few bones to a dumb journalist and has a laugh about it back at the club with the boys, is that obscuring the real security?
You find it surprising to find that a fictional world is built to accommodate the plot set in it? Seriously, fiction is a very, very, bad way to evaluate things for the real world.
Disclaimer: While I don't play a nuclear weapons technician on TV, I was one in real life. (Fire Control Technician (Ballistic Missiles) Second Class (Submarines), USN Submarine Service 1981-1991.) I've worked with weapons system components (both installed and spare) that were years and decades old, and have studied the issues as a civilian as well.
Actually, there's a number of downsides, most of which should be obvious with a few minutes serious thought:
Etc..., etc...
The USAF claiming that older tech makes them more 'safe' is just making lemons into lemonade. (And the situation is mostly a product of how far the missiles are from being a priority.) Mostly, I evaluate the claims as a way to deflect attention from the number of serious incidents they've had recently and from their significant personnel problems.
Since it is secure via remote hack and secure again a USB drop, then your only remaining option is a local intrusion.
That is when the guys with guns come in handy, and the military is good at that. :)
Are places like Ft. Hood secure? No. Is a nuclear missile silo secure? I dam well hope so...
If not, then I'd agree there is a problem.