Happy Halloween, everyone! There might be a better holiday, but few match Halloween for sheer fun and craziness. Kids are great for reminding you just how exciting it can be.
Tonight’s podcast is a discussion about the convergence of physical and logical security in the enterprise and government. I’d like to say the whole thing was my idea, but the truth is, Brian Contos approached me with this idea several weeks ago. We discussed why the two disciplines are converging, the business drivers, what it means to both security and privacy, and what’s going to be happening in this arena over the next five years. It’s a fascinating topic.
The guests tonight were Brian Contos, Chief Security Officer, ArcSight; William Crowell, security expert, executive business leader and former Deputy Director of the NSA; Dan Dunkel, president of New Era Associates; and Colby DeRodeff, GCIA, GCNA and Senior Security Engineer at ArcSight.
Network Security Podcast, Episode 50, October 31, 2006
Tonight’s music: Halloween by the Coffin Shakers
Thanks again to Astaro for sponsoring the podcast. Call them at 877-427-8276 to get your free demo unit.
Technorati Tags: security, McKeay, convergence, Arcsight
The audio from the Disclosure Round Table (Why is it I seem to be drawn to any discussion calling itself a ’round table’?) is online over at the Social Media Club web site. It’s long, at almost two hours, but I think this is the start of a conversation bloggers need to have.
Mike Rothman didn’t quite call me naive for being a part of this and expecting it to make a difference, though I’m pretty sure he wanted to. He makes a good point, in that the ‘unethical scumbags’ will always be unethical and no code of ethics we might write will change that. However, I do believe that the majority of people out there would rather be ethical than not, and by writing out the ethical guidelines for bloggers, those who desire to be ethical will now what’s expected. It’s more about giving bloggers a heads up before they step over the line, or just notification that there is a line to be crossed.
Will it work? Heck if I know. I’m an optomistic cynic: I hope for the best out of people but plan for the worst. Sometimes you’ve got to give people enough rope to hang themselves on the off chance they may find a better use for the rope.
Technorati Tags: security, McKeay, blogging, ethics, blogging+ethics
Here we have another wonderful example of our government spending more time and energy maintaining the illusion of security than actually making the country secure. This is such an utterly ridiculous example of security theater. And I’m sure the federal government and the FBI really appreciate every rational security professional in the country pointing out how stupid they’re being.
If you give people the ability to print their boarding passes at home, you also give them the ability to quickly and easily create fake boarding passes. The stupidest part of this whole melodrama is that it’s not even that hard to get through the security at airports. Heck, if you really want to get into the secure area, just go buy a cheap ticket on a local flight, which for me would be from Oakland to Las Vegas. Who needs to go through all the trouble and possible problems of creating a fake pass when you can purchase the real thing so cheaply. If I’m a bad guy, trying to do bad things, that’s what I’m going to do: go right through the security measures with a legitimate pass, rather than taking a chance that someone might catch on.
I think the thing that scares me the most about this is the righteous indignation our politicians are responding with. It’s not like Christopher created the system and it’s weaknesses. He’s not giving the terrorists a tool they didn’t have before or really even needed. He’s pointing out a chink in the armor of our airports, somethign that never gave more than the illusion of security to begin with. I’m not going to the point of declaring the way he’s being treated as illegal, but that s one threads I’m starting to read more often.
I like what Wil Wheaton said in a comment on BoingBoing:
Some of the links I’ve been following:
Technorati Tags: security, McKeay, boarding pass, Christoper Soghoian