First: there's really no good, justifiable reason for critical infrastructure to be attached to the Internet.
NONE.
Yes, there are some advantages to doing so - mostly related to saving $ on bandwidth or remote access - but none which outweigh the security risks involved.
Sure, it's nice to be able to monitor remotely, or for geeks (like me) to be able to come in and fix things from half a world away, but this creates exposures that involve risk.
There are plenty of ways that most of these things could be accomplished without any direct connection to the 'net, and with proper network segmentation and firewalling in place the risks would be mitigated as well.
So why not spend some $$ on some hardware and some geeks who know what needs to be done? This is idiocy - especially when one considers the massive cost-savings in doing it this way!
So why not?
Well...
If your mission is to secure the systems, then you do as I've described.
If your mission is to create another huge head on the .gov hydra, with lots of tentacles into just about everything -- THEN you do what's being talked about here, counting on your lap-dog media to scare the sheeple into going along with it.
If I told you leaving your door open was an invitation to thieves, you'd close your damn door -- RIGHT?
Yeah, good luck with that. Security is a process. And it includes things like, you know, remembering to change default passcodes on remote terminals.
We're still stuck in FDR-era centralized infrastructure mode. Don't worry, we're going to checkmate ourselves pretty soon. Just make sure they don't spend too much on Project Dumbass Tax-cow when the whole thing starts falling apart.
Last week over at Jen´s ¨I´ll take Liberty¨site I had said something about the NSA already having US on file as domestic terrorists etc. Someone corrected me that the NSA did Military Foreign Intel and pointed out that it was Northcom that did the Military Domestic Intel.
Now it appears that either I was right about the NSA Operating here or the Reporter on this story is wrong about this being a NSA plan.
I also have trouble believing that there is not already a Security,and an Emergency Back up plan(or two)in place.This has to be just more smoke and mirriors hiding what they are realy up to.
Interesting. The proposed program i supposed to protect private companies against cyber attacks, yet is named "Perfect Citizen"? W-T-F!??
Go to WRSA "The Noose Tightens" for another take. ANd don't forget to read the links, especially John Galt's. http://westernrifleshooters.blogspot.com/
I do not understand why many/most government offices and companies allow full internet access. It is likely there is no legitimate reason to be "online". If some online access is required connect to stand alone computers. There is really very little that "needs" to be conected to the internet.
It is starting to sound like it may be time for Threepers (old enough to remember) to revive an updated form of Fidonet. Combined with a little "sneaker net" cyber-coms could be much more secure.
9 comments:
Wow, it's the ultimate paradox!
First: there's really no good, justifiable reason for critical infrastructure to be attached to the Internet.
NONE.
Yes, there are some advantages to doing so - mostly related to saving $ on bandwidth or remote access - but none which outweigh the security risks involved.
Sure, it's nice to be able to monitor remotely, or for geeks (like me) to be able to come in and fix things from half a world away, but this creates exposures that involve risk.
There are plenty of ways that most of these things could be accomplished without any direct connection to the 'net, and with proper network segmentation and firewalling in place the risks would be mitigated as well.
So why not spend some $$ on some hardware and some geeks who know what needs to be done? This is idiocy - especially when one considers the massive cost-savings in doing it this way!
So why not?
Well...
If your mission is to secure the systems, then you do as I've described.
If your mission is to create another huge head on the .gov hydra, with lots of tentacles into just about everything -- THEN you do what's being talked about here, counting on your lap-dog media to scare the sheeple into going along with it.
If I told you leaving your door open was an invitation to thieves, you'd close your damn door -- RIGHT?
Unless you had another agenda, that is...
DD
Yeah, good luck with that. Security is a process. And it includes things like, you know, remembering to change default passcodes on remote terminals.
We're still stuck in FDR-era centralized infrastructure mode. Don't worry, we're going to checkmate ourselves pretty soon. Just make sure they don't spend too much on Project Dumbass Tax-cow when the whole thing starts falling apart.
Last week over at Jen´s ¨I´ll take Liberty¨site I had said something about the NSA already having US on file as domestic terrorists etc. Someone corrected me that the NSA did Military Foreign Intel and pointed out that it was Northcom that did the Military Domestic Intel.
Now it appears that either I was right about the NSA Operating here or the Reporter on this story is wrong about this being a NSA plan.
I also have trouble believing that there is not already a Security,and an Emergency Back up plan(or two)in place.This has to be just more smoke and mirriors hiding what they are realy up to.
Dennis
III
Texas
Interesting. The proposed program i supposed to protect private companies against cyber attacks, yet is named "Perfect Citizen"? W-T-F!??
Go to WRSA "The Noose Tightens" for another take. ANd don't forget to read the links, especially John Galt's.
http://westernrifleshooters.blogspot.com/
B Woodman
III-per
"Perfect Citizen" = "Big Brother"???
Looks like it to me.
Bad Cyborg X
I do not understand why many/most government offices and companies allow full internet access. It is likely there is no legitimate reason to be "online". If some online access is required connect to stand alone computers. There is really very little that "needs" to be conected to the internet.
It is starting to sound like it may be time for Threepers (old enough to remember) to revive an updated form of Fidonet. Combined with a little "sneaker net" cyber-coms could be much more secure.
And now the Terminator movies become reality.
Post a Comment