nanog mailing list archives
Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0)
From: Gadi Evron <ge () linuxbox org>
Date: Tue, 7 Oct 2008 19:31:07 -0500 (CDT)
On Tue, 7 Oct 2008, Steven M. Bellovin wrote:
On Tue, 7 Oct 2008 14:07:04 -0400 (EDT) Sean Donelan <sean () donelan com> wrote:On Tue, 7 Oct 2008, Valdis.Kletnieks () vt edu wrote:On Tue, 07 Oct 2008 11:30:11 CDT, "J. Oquendo" said:What about exceeding the minimum requirements for a change.(I think you'll find that if somebody is actually willing to *pay* for more security, there's plenty of outfits who are more than happy to make it happen)What should the US Government buy for more security? And how can the US Government make sure they actually get what they are paying?Right. The US government is a *huge* operation. Suppose you were the CIO or the CSO for the US government (excluding the classified stuff) -- what is the proper cybersecurity strategy?
Quit.More seriously though, you are far more likely to be in charge of certifying products for acquisition, and run after the different offices, agencies and organizations for cooperation. So a first step would be to try and make yourself useful to them, and develop personal relationships with those who do want to work with you, in order to start facilitating information sharing and incident response.
I'd also try and get as many logs, flows, etc. I can get and build a main monitoring system.
Being in "charge" is simply not possible or practical. Following the networks is indeed the first step. Gadi.
--Steve Bellovin, http://www.cs.columbia.edu/~smb
Current thread:
- RE: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0), (continued)
- RE: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Buhrmaster, Gary (Oct 06)
- RE: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Sean Donelan (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) J. Oquendo (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Valdis . Kletnieks (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Sean Donelan (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Steven M. Bellovin (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Valdis . Kletnieks (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Paul Ferguson (Oct 07)
- Re: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Marshall Eubanks (Oct 07)
- Re: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Paul Ferguson (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Gadi Evron (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) J. Oquendo (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Valdis . Kletnieks (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Sean Donelan (Oct 09)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Jean-François Mezei (Oct 07)
- RE: Fwd: cnn.com - Homeland Security seeks cyber counterattacksystem(Einstein 3.0) Tomas L. Byrnes (Oct 07)
- RE: Fwd: cnn.com - Homeland Security seeks cyber counterattacksystem(Einstein 3.0) Howard C. Berkowitz (Oct 07)
- Re: Fwd: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Patrick Darden (Oct 07)
- Re: cnn.com - Homeland Security seeks cyber counterattack system (Einstein 3.0) Steve Church (Oct 06)
- RE: cnn.com - Homeland Security seeks cyber counterattack system(Einstein 3.0) Howard C. Berkowitz (Oct 06)