Comment error correction (Score 4, Interesting) 51
"Security expert and notorious self-promoter Mikko Hypponen"
"modern malware makers are motivated mainly by money, just as most of the antivirus industry, including F-Secure".
"Security expert and notorious self-promoter Mikko Hypponen"
"modern malware makers are motivated mainly by money, just as most of the antivirus industry, including F-Secure".
s/accountability/appearance of accountability/1
Fixed!
I have never seen a real college campus served by a Cisco 3945.
I have seen plenty of branch offices and banks with using Cisco 3800 series devices, the 3945 predecessors.
Whether or not the device was overpaid for is a different question - I wouldn't be surprised if they used some 8A competition limiting factors that jacked up prices, or, if it included the actual installation and smartnet maintenance costs.
Why not transfer it to NOAA's Satellite Service (NESDIS)?
NOAA's Office of Satellite and Product Operations ( http://www.ospo.noaa.gov/ ) in NESDIS is fully capable and staffed for performing 24/7 satellite operations of production systems, or older NASA research satellites. Unlike a private initiative, OSPO is already paid for by the american people, and makes the data available to everyone.
Idiots who chose to live in antique buildings, in an earthquake prone area.
Rather than take personal responsibility for it, they are now trying to blame the scientists.
I doubt scientists can accurately predict earthquakes due to the limited amount of time we have been observing the earth. Half the Nuclear plants in the Eastern US were built to specifications considered accurate at the time, something we now know not to be adequate.
FISMA certified ( and accredited ) means a great deal more than security planning.
Certified means it was tested by an independent security tester to NIST 800-53, using 53A and all associated security pubs. I won't get into the specifics of the security testing required for this, but it is wide and primarily comprehensive*.
NIST's Risk Management Framework
Accredited means that a government executive read over everything, with the advice of government security engineers, and still thought it was a good decision to authorize government use. Government types are notoriously risk-adverse
NIST goes far beyond what you see in unregulated industries. If you don't understand the control set, you really are not qualified to speak. While there are other regulated industries that may have similar protections, they are few and far between.
* NIST control sets still need improvement in software security
GSA, the lead government agency for acquisition, certified and accredited Google according to FISMA.
The question is really whether or not GSA can do that (Certify and accredit for the entire US govt), and whether or not any agency can arbitrarily add their own unique security requirements(DOI excluding)
The truth of the matter is more simple.
Google went through the agonizing process of FISMA that is very stringent compared to jokes like a SAS 70 type 2. Microsoft did nothing. DOI does not have a FISMA certified private or govt cloud.
DOI determined they would add in their own unique security requirements for a yet-unbuilt cloud solution that had never been certified for FISMA. Basically a joke of a to-be solution.
Google cried foul, claiming they had already passed the FISMA qualification, something no other cloud vendor had done at the same time period. Google claimed a certified solution like their cloud could not be compared against a non-existent pipedream cloud.
GSA certified and accredited Google Apps (FISMA certification)
GSA is the lead agency for acquisition for the US Govt
GSA met several the NIST standards at the moderate level
DOI claims that the GSA certification doesn't meet their specific standards and they have to have a govt only cloud in the continental US.
DOI security has been the laughingstock of the US govt for as long as I can remember*
DOI disconnected from the internet by a federal judge for complete failure in IT security
he was suspected, or possibly indicted for some criminal & sexual transgression involving the female staff of Wikileaks?
I am sure the Swedes aren't keen on granting citizenship to every Tom, Dick or Harry alleged pervert.
Genetics explains why you look like your father, and if you don't, why you should.