Белый, белый, белый пласт - на концепции горазд
2 hours ago
Wednesday, 7 September 2011
John Young (@Cryptomeorg) on the security of disclosure sites
Cybersecurity wizards often repeat that a race is on between cyber defenders against cyber attackers and the attackers are winning due to the greater variety of attacker swarms against Maginot Line defenders.
A Dutch official said today that online security of government websites cannot be assured, that ordinary paper and mail are much superior. That has been Cryptome's advice for several years -- that online security is very poor and security peddlers and product distributors are concealing this deficiency to capitalize on the popularity of the Internet -- among them disclosure sites.
New cyber defenses become outdated instantly due to a continuous onslaught, some by amateurs having fun, some by competitors, most by criminals who sell their produce to a bevy of purchasers, governmental, commercial, individual.
Attacks are increasing geometrically as youngsters coming into cyber maurading proliferate, in particular in nations outside the major powers who are learning the limits of power in cyberworld they have created and promoted.
This means that any platform which offers disclosure services, aka leaksites, will lag the prowess and multitude of attackers and should warn submitters that the first and most important defense must start on the submitters' end.
And that the greater the risk a submission poses to the submitter the greater the need for for submitter's own defenses and never rely upon the platform's promises of protection. This was put in a nutshell by a National Security Agency paper in 2000 addressing the futility of computer security, "The Inevitability of Failure: The Flawed Assumption of Security in Modern Computing Environments."
http://www.nsa.gov/research/_files/publications/inevitability.pdf
Beyond unavoidable insecurity in computers an networks, submissions may be intercepted in transit, misplaced at the platform end, misunderstood and/or misjudged by the platform staff, or improperly explained and published. Disclosure platforms do
not have sufficient stable, well-trained staff to compensate for the turnover in volunteers with their limited skills ineptly directly by site operators.
You will recall that these are all applicable to WikiLeaks and most of its emulators as well as governments, commerce and the wealthy. OpenLeaks has attempted to address them but it is quite difficult not only for a low-resourced initiative but also
for the well-endowed.
At the moment the well-endowed and those less so are obscuring the lack of online and other forms of digital security, instead engage in what the wizards call "security by obscurity," hoping attackers will not find and exploit weaknesses.
As we see near daily, admission of security breaches are escalating not because the providers want to tell but because insecurity is being exposed by those who wish to no longer hide the truth known to insiders and a growing crowd of outsiders. To wit, DDB and others in the security and hacker world. They are calumnized by insiders who hope to maintain obscurity a while longer.
This means your most distinguished institutional readers in finance, law, government, intelligence and the rest who vaunt their prowess for credibility, authenticity and security, face increasing disclosure of faults in their protection pretenses -- which includes global Cyber Command initiatives.
The petit furor with Wikileaks, OpenLeaks, Anonymous
and newsy ilk portends a grand furor building toward disclosing something wonderful, I hope, about the cost of excessive secrecy and security obscurity,
no matter who lurks beneath the cloak. Wikileaks and emulators are the least problematic compared to the Titanic-grade protectors of the commonweal who are being outmatched by icebergs much more threatening than security-truth-disclosure sites.
Via
A Dutch official said today that online security of government websites cannot be assured, that ordinary paper and mail are much superior. That has been Cryptome's advice for several years -- that online security is very poor and security peddlers and product distributors are concealing this deficiency to capitalize on the popularity of the Internet -- among them disclosure sites.
New cyber defenses become outdated instantly due to a continuous onslaught, some by amateurs having fun, some by competitors, most by criminals who sell their produce to a bevy of purchasers, governmental, commercial, individual.
Attacks are increasing geometrically as youngsters coming into cyber maurading proliferate, in particular in nations outside the major powers who are learning the limits of power in cyberworld they have created and promoted.
This means that any platform which offers disclosure services, aka leaksites, will lag the prowess and multitude of attackers and should warn submitters that the first and most important defense must start on the submitters' end.
And that the greater the risk a submission poses to the submitter the greater the need for for submitter's own defenses and never rely upon the platform's promises of protection. This was put in a nutshell by a National Security Agency paper in 2000 addressing the futility of computer security, "The Inevitability of Failure: The Flawed Assumption of Security in Modern Computing Environments."
http://www.nsa.gov/research/_files/publications/inevitability.pdf
Beyond unavoidable insecurity in computers an networks, submissions may be intercepted in transit, misplaced at the platform end, misunderstood and/or misjudged by the platform staff, or improperly explained and published. Disclosure platforms do
not have sufficient stable, well-trained staff to compensate for the turnover in volunteers with their limited skills ineptly directly by site operators.
You will recall that these are all applicable to WikiLeaks and most of its emulators as well as governments, commerce and the wealthy. OpenLeaks has attempted to address them but it is quite difficult not only for a low-resourced initiative but also
for the well-endowed.
At the moment the well-endowed and those less so are obscuring the lack of online and other forms of digital security, instead engage in what the wizards call "security by obscurity," hoping attackers will not find and exploit weaknesses.
As we see near daily, admission of security breaches are escalating not because the providers want to tell but because insecurity is being exposed by those who wish to no longer hide the truth known to insiders and a growing crowd of outsiders. To wit, DDB and others in the security and hacker world. They are calumnized by insiders who hope to maintain obscurity a while longer.
This means your most distinguished institutional readers in finance, law, government, intelligence and the rest who vaunt their prowess for credibility, authenticity and security, face increasing disclosure of faults in their protection pretenses -- which includes global Cyber Command initiatives.
The petit furor with Wikileaks, OpenLeaks, Anonymous
and newsy ilk portends a grand furor building toward disclosing something wonderful, I hope, about the cost of excessive secrecy and security obscurity,
no matter who lurks beneath the cloak. Wikileaks and emulators are the least problematic compared to the Titanic-grade protectors of the commonweal who are being outmatched by icebergs much more threatening than security-truth-disclosure sites.
Via
Queen - Live At Wembley Stadium 1986
1. One Vision
2. Tie Your Mother Down
3. In the Lap of the Gods
4. Seven Seas of Rhye
5. A Kind of Magic
6. Another One Bites the Dust
7. Who Wants To Live Forever
8. I Want to Break Free
9. Impromptu
10. Brighton Rock
11. Now I'm Here
12. Love of My Life
13. Is This the World We Created
14. Bohemian Rhapsody
15. Hammer To Fall
16. Crazy Little Thing Called Love
17. Radio Ga Ga
18. We Will Rock You
19. Friends Will Be Friends
20. We Are the Champions
21. God Save the Queen
Uploaded by http://www.freddieforaday.com/ to celebrate Freddie Mercury's 65th birthday
Footprints On The Moon
NASA's Lunar Reconnaissance Orbiter (LRO) has captured the sharpest images ever taken from space of the Apollo 12, 14 and 17 sites, revealing the twists and turns of the paths made when the astronauts explored these areas.
Via
Blasphemous Jazz: The Bitches Brew Sessions (Free Download)
On Thursday June 2, 2011 at The Little Bar in South Philadelphia; Mndsgn, Swarvy, Sir Froderick, Knxwledge, Josh Hey and Stainless Steele came together to play a live show that they called “Blasphemous Jazz”. The concept for the show was that each artist would produce the re-workings of Miles Davis’ ‘Bitches Brew’ album. Each producer played a live set which included their Bitches Brew session. The show was hosted/Emceed by Stainless Steele. This release is the studio version of what was performed live that night.
Via
Did Conservatives sell out Canada to U.S. copyright interests?
Documents released through Wiki Leaks are painting an alarming picture of Conservative collusion with U.S interests to force through U.S. style copyright legislation.
New Democrat Digital Affairs Critic Charlie Angus (Timmins—James Bay) says the leaks raise serious questions about the role played by former Industry Ministers Maxime Bernier and Tony Clement.
The documents reveal how a key aide to then-Industry Minister Tony Clement urged the United States to put Canada on their piracy watch-list in order to pressure Parliament to pass legislation that undermines the rights of Canadian consumers.
“The U.S. Piracy List is supposed to be reserved for countries on the margin of international law. Instead it is being used as a bully tool to undermine Canada's international trade reputation,” said Angus. “It is astounding that Tony Clement would tarnish Canada’s international trade reputation by encouraging U.S. efforts to put us on this black list. Conservatives can’t be trusted to stand up for Canadian interests.”
The Wiki Leaks documents also reveal how former Industry Minister Maxime Bernier offered to give the American government a sneak peek at new copyright legislation even before it had been brought to the House of Commons.
“The Wiki Leaks documents reveal a pattern of collusion on the part of the Conservatives to undermine Parliament and sell out Canadian consumers. Canadians expect their government to stand up to unfair strong-arm tactics over copyright” said Angus. “Tony Clement appears to have supported a reckless course that damaged our international standing."
@'Jack Layton'
New Democrat Digital Affairs Critic Charlie Angus (Timmins—James Bay) says the leaks raise serious questions about the role played by former Industry Ministers Maxime Bernier and Tony Clement.
The documents reveal how a key aide to then-Industry Minister Tony Clement urged the United States to put Canada on their piracy watch-list in order to pressure Parliament to pass legislation that undermines the rights of Canadian consumers.
“The U.S. Piracy List is supposed to be reserved for countries on the margin of international law. Instead it is being used as a bully tool to undermine Canada's international trade reputation,” said Angus. “It is astounding that Tony Clement would tarnish Canada’s international trade reputation by encouraging U.S. efforts to put us on this black list. Conservatives can’t be trusted to stand up for Canadian interests.”
The Wiki Leaks documents also reveal how former Industry Minister Maxime Bernier offered to give the American government a sneak peek at new copyright legislation even before it had been brought to the House of Commons.
“The Wiki Leaks documents reveal a pattern of collusion on the part of the Conservatives to undermine Parliament and sell out Canadian consumers. Canadians expect their government to stand up to unfair strong-arm tactics over copyright” said Angus. “Tony Clement appears to have supported a reckless course that damaged our international standing."
@'Jack Layton'
Michael Parenti - The Face of Imperialism
"Michael Parenti's The Face of Imperialism is a powerful, frightening, and honest book. It will be hated by those who run the Empire, and it will be loved by people who are searching for truth amidst the piles of garbage of Western propaganda. Above all, this book will be like a bright spark of hope for billions of men, women, and children who are fighting this very moment for survival, defending themselves against the Empire and against all monstrous faces and masks of imperialism." —Andre Vltchek, author of Western Terror: From Potosi to Baghdad.
Via
Subscribe to:
Comments (Atom)
