[Cryptography] Retrofiting Access Control
Bill Frantz
frantz at pwpconsult.com
Tue Jun 3 18:28:54 EDT 2014
On 6/3/14 at 2:49 PM in a thread titled, "Re: [Cryptography]
It's GnuTLS's turn: "Critical new bug in crypto library leaves
Linux, apps open to drive-by attacks"", leichter at lrw.com (Jerry
Leichter) wrote:
>You need only look at the disaster that is network-based
>industrial control systems with no access controls being
>exposed to the Internet - and the immense costs (which no one
>is in a position to pay) to fix the resulting holes.
Probably the best solution for these systems is a security front
end. To my mind, these systems need authorization and integrity
more than secrecy. All of these can be implemented in a small,
inexpensive system which acts as a gateway to the big bad
Internet. I see it as a Raspberry Pi kind of application. The
good news here is that NSA is much more on your side (if you're
a US operator) then they are on the side of systems which need
privacy. Keeping cyber attacks from making factories, power
systems etc. go boom in the night is part of their job.
OTOH, being able to make these facilities go boom on command is
part of the job of every potential enemy military,
Cheers - Bill
-----------------------------------------------------------------------
Bill Frantz | I like the farmers' market | Periwinkle
(408)356-8506 | because I can get fruits and | 16345
Englewood Ave
www.pwpconsult.com | vegetables without stickers. | Los Gatos,
CA 95032
More information about the cryptography
mailing list