tag:blogger.com,1999:blog-4088979.post114982662386011355..comments2023-10-16T06:06:25.012-04:00Comments on TaoSecurity Blog: Dan Geer on Converging Physical and Digital SecurityRichard Bejtlichhttp://www.blogger.com/profile/13512184196416665417noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-4088979.post-1150217791687352202006-06-13T12:56:00.000-04:002006-06-13T12:56:00.000-04:00The most fun comment I've heard on convergence was...The most fun comment I've heard on convergence was:<BR/><BR/>digital SECURITY to information SECURITY <BR/><BR/>has the same type of relation as <BR/><BR/>LEAD singer to LEAD pipe :-)Anton Chuvakinhttps://www.blogger.com/profile/12740087457147758558noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1150139341978192112006-06-12T15:09:00.000-04:002006-06-12T15:09:00.000-04:00The missing link in converged security operations ...The missing link in converged security operations is a preventive mentality. I speak from some experience. As a former practitioner of the arcane art of crime prevention in law enforcement, and as a current practitioner of digital enforcement in the corporate world, my experience lends itself to understanding the dichotomy.<BR/><BR/>The law enforcement model is not a security model, it is a reaction model. The definition of crime prevention (according to the National Crime Prevention Institute) is the anticipation, recognition and appraisal of a crime risk and the initiation of some action to remove or reduce it. Security is at heart a function of this definition.<BR/><BR/>To provide a preventive posture, one must develop a proactive rather than reactive methodology. From a fiscal perspective it is drastically more expensive to initiate a proactive prevention program, even though in the long run there should be a cost savings due to a reduction in incidents. <BR/><BR/>But how do you prove it? If the only reliable metric for success of a prevention program is the absence of successful breaches of defense, can you attribute low numbers solely to your prevention program, or could there be other reasons that your numbers are low, like absence of attackers?<BR/><BR/>This problem is endemic to the prevention mentality, and is very difficult to overcome when attempting to demonstrate effectiveness at budget time. This is in direct contrast to the reactive "law enforcement" model, which will always have solid numbers and tangible benefits. In the end, each bad guy caught is a statistical victory over prevention.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1149880704458337262006-06-09T15:18:00.000-04:002006-06-09T15:18:00.000-04:00I should mention that analog criminals generally l...I should mention that analog criminals generally lack the ability to clone, automate, and project themselves as their digital counterparts do. This is an important aspect of Dr. Geer's argument.Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-1149865535639210552006-06-09T11:05:00.000-04:002006-06-09T11:05:00.000-04:00Minority Report... Good movie, even better book. O...Minority Report... Good movie, even better book. Of course, its kind of difficult to have authorities ready to strike at the time of an incident, no matter which world. You are correct in that intelligence is the key, not only to preempting incidents, but also as indicators to improve preventive measures.John Wardhttps://www.blogger.com/profile/10741149622435353727noreply@blogger.com