Tuesday, March 27, 2018

What do you really mean?



When I say "...dog..." what do you see in your minds eye?  Me?  Big, smiling yellow lab...I bet you see something completely different?

So..... when someone says that the "cloud" is more secure?  I know they see something completly different than I do.

One of my CIO friends asked me what was the greatest risk of migrating his HR practices to the "cloud"?  I explained that since his HR practices were already less than optimal, migrating them to the cloud meant that they could automate their crappy processes and perform more of them faster, in the "cloud".

What his company really needed was expert guidance BEFORE they migrated to the "cloud".  He thought I was kidding (being the SECRET CISO and all), he was surprised when the VP of HR agreed with me!

When someone tells you that the "cloud" is more secure, ask them what they see in their minds eye when you say "dog"...
Posted by at No comments:

Wednesday, March 21, 2018

What will be the impacts of Artificial Intelligence on Cyber Security?



As a species, it seems that we over simplify the impacts of a technology in the short term, and under simplify in the long term, if at all. 

Today's operational tempo of a Cyber Security attack is dependent on the human planners, how will this evolve as AI is used in the offense?  How will AI in the defense anticipate and react, will anticipation be possible?  What impacts will AI based Cyber Crime tools as a service have on current defense models, tools and capabilities? 

Dr. Dennets quote is awe inspiring, "...a natural part of the evolution of intelligence itself is the creation of systems capable of performing tasks their creators do not know how to do...". 

Interesting Reading...

MIT Technology Review Magazine article
Posted by at No comments:

The Dark Side of Cyber Security Innovation?



Daniel E Geer reminds us that every single Cyber Security research, product and innovation has a white and black hat capability.  Excellent reading from an amazing talent.  It's long and chewy, but you'll enjoy every nugget.

Dr. Geer's excellent research paper
Posted by at 1 comment:

Thursday, March 8, 2018

History of our INFOSEC World





Where does your INFOSEC knowledge come from?

The common lineage of all modern Information Security can be traced back the the NSA "rainbow series" of standards.  Published in the mid 80's, seems like just yesterday.

The winter 2018 publication of US Army History magazine profile's the history of the US Army Security Agency, my alma-mater.

Take an inside look...

US Army History Magazine
Posted by at No comments:
Subscribe to: Posts (Atom)