Sunday, August 07, 2005
Soccer Goal Security
The goalie is addressing the threat he expects, namely someone trying to score from the side of the net he is defending. In many cases the goalie is "fighting the last war;" perhaps the last time he was scored upon came from the side he now defends? The threat is smart and unpredictable, attacking a different part of the net.
The net itself (the enterprise) is huge. Not only is the front of the net open, the net itself is riddled with holes. A particularly clever attacker might see his objective as getting the ball in the net using any means necessary. That might include cutting the ball into smaller pieces and sending the fragments through holes in the net. Another attacker might dig his way under the goal and send the ball up through a tunnel. Yet another attacker might wait for the goalie to get tired, or drop his guard, or lose his vision at night. A really viscious threat would attack the goalie himself.
Network security monitoring is the device that captured this photo. We might collect indicators of any of the previously mentioned attacks. A traditional IDS or IPS might alert or try to block attacks (goals) passing from outside the front of the net to inside the front of the net. NSM data might reveal vibrations from tunneling under the goal, or small pieces or soccer ball being infiltrated through the back. Perhaps the goal itself is slightly raised in the back and the ball is just pushed under!
I would prefer to see a version showing an ice hockey goalie, but I would have to stage and photograph that myself. Apologies to my friends across the pond who call this "football."