Thursday, August 22, 2002

Megaterror and Insecurity A couple of good articles on security from MIT's Technology Review as we approach the first anniversary of September 11th: The Technology of Megaterror Airport Insecurity 5:41:20 PM

Cyberwarfare We know that people have been sniffing around our networks for some time.  The most significant attack was May 2001 by some Chinese hackers.  Now the federal government is scrambling to prepare for the next round.  The Washington Post reports: The Bush administration is stepping up an internal debate on the rules of engagement for cyberwarfare as evidence mounts that foreign governments are surreptitiously exploring our digital infrastructure, a top official said yesterday. As terrorists and nations begin to understand the potential for disruption and chaos caused by a major successful cyber-attack, they will dedicate more resources and brain-power to the effort.  The next round will be more significant and directed than the last, and so it will continue.  This is going to go on for a long time.  Remember Code Red?  U.S. officials also believe it is possible that a foreign government helped create the Code Red virus that took control of 314,000 servers last year and directed them to attack White House computers. The attacks that we had last year passed mainly through servers in China and Brazil.  At one time, we were taking several hundred thousand hits an hour.  The Hong Ke (honkers) claimed responsibility: Chinese hackers say they didn't initiate the conflict, claiming U.S. hackers were taunting them as far back as April 1. Dubbing the conflict China's sixth cyberwar, Honker Union launched the campaign against the United States on May 1, the May Day workers' holiday. The offensive action coincided with escalating diplomatic tensions between Beijing and Washington over the April collision of a Navy surveillance plane over the South China Sea.  (Info Security Magazine) Wired magazine was calling it "World Cyberwar I".  Meanwhile, the US is creating its own plans for cyberwarfare. 5:24:02 PM

NSA and Open Source Thanks to William Cox, author of The Peanut Gallery, for pointing me to the World Tech Tribune.  Cox quotes an article that discusses NSA's decision to stop using open source products as a platform for development.  NSA's contributions to specific open source products, in particular SE Linux, have not only helped the agency, but because it is open source, it has also aided terrorists to strengthen their own technology architecture.  This has always been a hot issue for NSA and other intelligence agencies, how to control the technology flow to the bad guys. 12:49:39 PM

More HIPAA Bob Woolley's list of HIPAA technical requirements looks a lot like my list of expectations for our enterprise security project.  Increased specialization and pooling of resources will be critical to the success of this venture.  Tasks that I would include on our enterprise project that are not on Bob's HIPAA list are: Education and training Interstate ISAC coordination Public Key Infrastructure, interface with FBCA VPN management Wireless security Threat analysis Analysis and deployment of new technologies such as biometrics Critical system reliability Security auditing Extranets, business partner communications and exchanges Critical infrastructure vulnerability assessment 11:07:41 AM

Security and Instant Messaging As we look at adding instant messenger service to our options for online eGovernment support, we need to be very aware of the security implications.  Information Security magazine has an excellent article on the security challenges of instant messaging for enterprise networks. 10:55:03 AM

© Copyright 2002 David Fletcher.