Re: [Full-disclosure] Project Chroma: A color code for the state ofcyber security



Can we have patterns, so it's accessible? :-)

My point was it's been done, in a data driven manner, so any utility
that might be realized from such a scheme has already been provided.

I make no representations regarding the utility of colors, but I do use
the numeric value to bias how sensitive my SIM/SEMs are to IDS alerts.



-----Original Message-----
From: rholgstad [mailto:rholgstad@xxxxxxxxx]
Sent: Sunday, November 30, 2008 7:37 PM
To: Mike C
Cc: Tomas L. Byrnes; Full Disclosure
Subject: Re: [Full-disclosure] Project Chroma: A color code for the
state ofcyber security

Do you actually want to go this route after seeing dhs being laughed at
daily with their retarded color scheme? You realize that color schemes
do nothing for real security and are just more policy BS right?

Mike C wrote:
Yes,

The project Chroma leads know of various efforts. But these are
either
vendor specific, or old and unstandardized. Project Chroma aims to be
very active, and will look to interact with security vendors to
implement the color codes in security products.



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



Relevant Pages