Category: Reform

Functionality > Security

It was reported recently that a security researcher found several exploitable vulnerabilities in a FireEye product. ‘I tried to work with them,’ he said, but was apparently rebuffed/ignored, so here you go: an 0-day. There are at least three sides…

No Accountability, No Peace (of Mind)?

Thanks to the ever vigilant Richard Bejtlich for pointing out Jeremiah Grossman’s slides on the idea of INFOSEC security guarantees. Reading them reminded me of a saying, the exact wording of which I forget now, but it is something along…

Meaningful Ideas

That airline security is largely theater is a given. As has been covered by others, precluding cockpit access by anyone but pilots is the safest and sanest security move post-9/11. The rest of the processes are not ill-intended, just ill-conceived.…

The Lessons of PFC Manning

The tragedy here is not that we were undone by a shit-bird GI who didn’t have his head screwed on straight, it’s that we will ignore what he is teaching us.

Incongruence Defined

How apropos that on the heels of the publication of one of the better ideas out there on how to improve the quality and accessibility of intelligence to consumers, we hear reports that the leadership of the IC wants to…