I believe the title of this topic is misleading as General Keith Alexander is talking more for private enterprise and critical infrastructure (SCADA) systems to use the internet to reduce threats and help secure the country. I actually agree in theory with what is being proposed.
Quote:
|
The NSA is already running a trial with 17 U.S. defense companies intended to demonstrate technology that could be deployed to change that. Under the Defense Industrial Base (DIB) Cyber Pilot, Lockheed Martin and other companies set up their computer security systems to automatically alert the agency when the alarm is tripped. They automatically pass a summary of what was detected and the IP address associated with the event to the NSA over the Internet. "All you need to pass is the fact of a signature and IP address in real time, and we can take it from there," said Alexander....Alexander also suggested rolling back the decentralization of computer networks by saying that "thin client" computing should be considered by large organizations.
|
From a cybersec point of view those arenot bad ideas. An ability for organizations to create a giant mesh IDS to identify attacks is a good thing, also forcing organizations to go thin means more locked down controls of information and lowers the infection vector of organization IT assets. (It does have cons i.e "The magical cloud")
However all that being said as someone who has worked for the government I know these ideas will be blown up,convoluted, inefficient and 20 steps behind the latest threats. Then when the interface is not adopted due to the above reasons by companies, it will be forced under regulatory compliance mandates, where contractors and consultants will work with it for many years to come as the government continues to throw money at it...but I digress, I give them an A for effort.
July 30th, 2012, 09:19 AM
NSA Boss Wants More Control Over the 'Net
