Re: [fw-wiz] Top Secret DOD Data over the Public Internet? Thoughts?

From: Marcus J. Ranum (mjr_at_ranum.com)
Date: 08/20/04

  • Next message: Orca: "RE: [fw-wiz] Remote Access via Checkpoint VPN"
    To: "Kevin Sheldrake" <kev@electriccat.co.uk>, "Gary Flynn" <flynngn@jmu.edu>, firewall-wizards@honor.icsalabs.com
    Date: Fri, 20 Aug 2004 14:32:59 -0400
    
    

    Kevin Sheldrake wrote:
    >Personally, I would think their greatest threat would come from
    >availability attacks.

    Depends on the threat model. Are you worried about downtime,
    or are you worried about the enemy setting up an RSS feed of
    your battle plans? Each would suck. ;)

    Transitive trust attacks could be gigantic, especially if you
    figure that it's all being tunnelled over an encrypted black
    core point-to-point network. How do you detect attacks and
    track them if they are being done over Type-1 crypto?

    mjr.

    _______________________________________________
    firewall-wizards mailing list
    firewall-wizards@honor.icsalabs.com
    http://honor.icsalabs.com/mailman/listinfo/firewall-wizards


  • Next message: Orca: "RE: [fw-wiz] Remote Access via Checkpoint VPN"