Submission + - NSA Considers Its Networks Compromised (net-security.org) 1
Orome1 writes: Debora Plunkett, head of the NSA's Information Assurance Directorate, has confirmed what many security experts suspected to be true: no computer network can be considered completely and utterly impenetrable — not even that of the NSA. "There's no such thing as 'secure' any more," she said to the attendees of a cyber security forum sponsored by the Atlantic and Government Executive media organizations, and confirmed that the NSA works under the assumption that various parts of their systems have already been compromised, and is adjusting its actions accordingly.
This is no news. The only sane way to work. (Score:1)
Is this news to anyone? Working under the assumption of a partial compromise is the only sane way to "do" security. We even do it at our homes, for both virtual (e.g., SSH rather than Telnet over LAN) and physical security (e.g., one may lock the door to their apartment even though there's a concierge downstairs).