Really? Being an Infosec Professional and a published author who's worked with several Fortune 50 and Government Agencies, I would question your thinking. It sounds that your relating to much of being a Infosec pro to the executive branch.
Most Infosec pro's are Firewall-IPS-Endpoint Security type individuals, who carry a lot of valuable experience, much more than the executive branch. I've dealt with to many executives who have no concept of the environment they are trying to protect.
I've had to deal with CSO's who send out urgent memo's to make sure the BSD servers were patched and hardened due to a CERT/Infraguard release of possible attack against BSD servers, then smiling to the CSO knowingly and tell them, "Not to worry sir, we don't have any"
Communication goes both ways, as most executive infosec pro's don't seem to realize. Holding meetings is one thing but communicating effectively to staff and employee's is another. Then again they may not want to, considering it may mean dealing with sharper Infosec Pro's than themselves.
I'm not a programmer by any means, but wouldn't a solution much like mesh networking or P2P software be effective in parallel programming?
Again I'm not a programmer...
I agree with MOBE2001, back when I was Sysop I remember even Microsoft's tech's saying that Multi-threading just doesn't assemble the code that was run on separate core's very efficiently, it was all due to the re-assembly algorithm in the OS.
It's an arm's race, new and better hacks' spur new and better protection which spurs better hack's and so on...Just like today there won't be any one solution to provide security and their won't be anything that's 100% secure. No matter what the speed of the processor.
IMHO, I think IT is in a rut, just as the article eludes to. What is needed is to rethink the process. Look at providing important information to the people where they are. In other words it shouldn't matter where I am, if I sit down in front of a computer I should be able to get to my information and application's wherever I am.
Information and not the computer should become ubiquitous.
A RFID card system (with encryption) should allow a person to sit in a an office, or cube, and have their phone calls and desktop forwarded to the workstation their in front of.
Well sending a packet with an invalid MAC address, a normal NIC will reject it, one in promiscuous mode will accept it. Sending ARP packets may get a response, since the packets by-pass the NIC hardware and goes straight to the OS's kernel. There are variations on these used by many vendors.
How does intrusion detection and firewalls stop someone from eavesdropping on communications? There are still ways for an IDS/IPS to detect network cards in promiscuous mode (without an IP address), which most hackers use to sniff traffic.
I agree, there's information overload by the n'th degree compared to even a couple of decades ago. Then again over 50's tend to be more "stuck in their ways" than younger people, due to neural pathways being reinforced over the longer time, that we just remember it after awhile.
The ultimate out come of what everyone is saying is that America is becoming more and more afraid of true innovation (I'm talking of large innovated changes as compared to incremental innovation such as faster processors) due to fear of liability! Sad state of the world indeed!
Everybody's so terrified of risk that innovation is radically reduced. I think you hit the needle on the head. I think business and people in general are to afraid to loose what they have, so are afraid to use anything that is untried and new in their environments because there's the possibility of loss, whatever that loss may be, financial, medical, etc. Wish it was like the 50-60's when scientists and engineers thought big!
As a INFOSEC person, I see this kind of mentality on a daily bases. Still, there is a realization of the costs of outages due to attacks and that I see. Slowly but surely it's changing. Compared to evolutionary changes tho, it's a blink of an eye.
Slashdot Mirror
Please post your email and I will send it to you, in private.
I actually write for Information Security Magazine http://searchsecurity.techtarget.com/magazineCurrent/0,296884,sid14,00.html
Really? Being an Infosec Professional and a published author who's worked with several Fortune 50 and Government Agencies, I would question your thinking. It sounds that your relating to much of being a Infosec pro to the executive branch. Most Infosec pro's are Firewall-IPS-Endpoint Security type individuals, who carry a lot of valuable experience, much more than the executive branch. I've dealt with to many executives who have no concept of the environment they are trying to protect. I've had to deal with CSO's who send out urgent memo's to make sure the BSD servers were patched and hardened due to a CERT/Infraguard release of possible attack against BSD servers, then smiling to the CSO knowingly and tell them, "Not to worry sir, we don't have any" Communication goes both ways, as most executive infosec pro's don't seem to realize. Holding meetings is one thing but communicating effectively to staff and employee's is another. Then again they may not want to, considering it may mean dealing with sharper Infosec Pro's than themselves.
I'm not a programmer by any means, but wouldn't a solution much like mesh networking or P2P software be effective in parallel programming? Again I'm not a programmer...
I agree with MOBE2001, back when I was Sysop I remember even Microsoft's tech's saying that Multi-threading just doesn't assemble the code that was run on separate core's very efficiently, it was all due to the re-assembly algorithm in the OS.
An experiment done by Korean scientists, it must be true!
It's an arm's race, new and better hacks' spur new and better protection which spurs better hack's and so on...Just like today there won't be any one solution to provide security and their won't be anything that's 100% secure. No matter what the speed of the processor.
IMHO, I think IT is in a rut, just as the article eludes to. What is needed is to rethink the process. Look at providing important information to the people where they are. In other words it shouldn't matter where I am, if I sit down in front of a computer I should be able to get to my information and application's wherever I am. Information and not the computer should become ubiquitous. A RFID card system (with encryption) should allow a person to sit in a an office, or cube, and have their phone calls and desktop forwarded to the workstation their in front of.
Considering my brain, the AI can have it, although the it would take one look and probably consider it a lost cause.
This kind of research obviously would lead to, a few years down the road, a type of electronic telepathy.
Well sending a packet with an invalid MAC address, a normal NIC will reject it, one in promiscuous mode will accept it. Sending ARP packets may get a response, since the packets by-pass the NIC hardware and goes straight to the OS's kernel. There are variations on these used by many vendors.
I agree, there's information overload by the n'th degree compared to even a couple of decades ago. Then again over 50's tend to be more "stuck in their ways" than younger people, due to neural pathways being reinforced over the longer time, that we just remember it after awhile.
The ultimate out come of what everyone is saying is that America is becoming more and more afraid of true innovation (I'm talking of large innovated changes as compared to incremental innovation such as faster processors) due to fear of liability! Sad state of the world indeed!
I agree whole heartedly, maybe there should be a distinction between incremental inventions and novel (meaning really new) inventions.
The iphone is a great cell phone, but I wouldn't say it was the best invention.
Welcome to our Mighty mouse overlords!
This is why I get those uncontrollable urges to speak in Algebraic terms! You X^2+Y^2= f(x) !!!
Gets me a CEO position, cool!
You can't base a 'supercomputer' on the OS it runs. 'Supercomputers' often run Linux, the same (with tweaks) that can be run a desktop. http://www.forbes.com/2005/03/15/cz_dl_0315linux.html
Shows just how tough it really is. Should get bonus money just for launching.
Sounds like Fusion power, but always 10-15 years away!
As a INFOSEC person, I see this kind of mentality on a daily bases. Still, there is a realization of the costs of outages due to attacks and that I see. Slowly but surely it's changing. Compared to evolutionary changes tho, it's a blink of an eye.