Re: Thou shalt have no other gods before the ANSI C standard
From: David Wagner (daw_at_taverner.cs.berkeley.edu)
Date: 02/24/05
- Next message: Tom Linden: "Re: Thou shalt have no other gods before the ANSI C standard"
- Previous message: David Wagner: "Re: Thou shalt have no other gods before the ANSI C standard"
- In reply to: Morten Reistad: "Re: Thou shalt have no other gods before the ANSI C standard"
- Next in thread: Gene Wirchenko: "Re: Thou shalt have no other gods before the ANSI C standard"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 24 Feb 2005 20:54:09 +0000 (UTC)
Morten Reistad wrote:
>David Wagner <daw-usenet@taverner.cs.berkeley.edu> wrote:
>>JMFBAH wrote:
>>>Keeping a system up is the first rule of security.
>>
>>Not necessarily. It depends on the system.
>
>This was not what I learned in the Navy. There is a golden rule
>in all military service that no functional computer data is
>surrendered to the enemy. Firing grenades inside the disk drives
>was sometimes deemed sufficient, other times thermite fires inside
>CPU cabinets was needed. This is analyzed in detail for avery system
>used, and procedures laid out. The grunts then get to exercise the
>hardware version of "rm -rf *" until they get down to seconds.
A great example of a system where confidentiality is more important
than availability. The key is to understand your goals and to think
carefully about how to prioritize them, so that when it comes time to
make tradeoffs, you can make those tradeoffs intelligently.
>There are times when the best service is no service. Such as when
>the person doing identity theft on a significant fraction of the
>village's population is down at the ATM trying to empty out accounts.
>Nixing the ATM service suddenly seems like a very attractive solution.
Yes. A good example of a system where integrity is more important
than availability. Again, which goal is more important will depend
on the application (and on the threat environment, etc.) -- you've got
to do the analysis.
There is no one answer that is right for all systems. In some systems,
availability may well be more important than perfect integrity or
confidentiality; in others, integrity or confidentiality may be more
important than availability; and so on.
- Next message: Tom Linden: "Re: Thou shalt have no other gods before the ANSI C standard"
- Previous message: David Wagner: "Re: Thou shalt have no other gods before the ANSI C standard"
- In reply to: Morten Reistad: "Re: Thou shalt have no other gods before the ANSI C standard"
- Next in thread: Gene Wirchenko: "Re: Thou shalt have no other gods before the ANSI C standard"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
