mailing list archives
Re: DISA eliminating firewalls
From: Tim Harris <tim () fbnservices us>
Date: Fri, 5 Jul 2013 18:03:23 -0700
I don’t disagree with your comment about the crunchy outside/gooey middle but If firewalls are to go away, what will
happen to the function they perform? Are we going to discard the entire function of coarse filtering? It has been
amply demonstrated that the individual device is not currently capable of adequately defending itself.
Going back to my other comment about many points of administration, is there a software package or system that can/will
reduce it down to a manageable problem? Is there a “meta-admin” system out there or under development?
From: firewall-wizards-bounces () listserv icsalabs com [mailto:firewall-wizards-bounces () listserv icsalabs com] On
Behalf Of Crispin Cowan
Sent: Friday, July 05, 2013 12:04 PM
To: Firewall Wizards Security Mailing List
Subject: Re: [fw-wiz] DISA eliminating firewalls
Firewalls are virtually guaranteed to disappear. The writing was on the wall the first time “crunchy outside, gooey
middle” was uttered. Smart phones and tablets dig the hole deeper, and BYOD is the nail in the coffin.
You cannot protect your networks in a world full of smart phones and tablets, owned by consumers, which must be allowed
to connect to the network. The only thing you can do at that point is to stop trusting the network, and instead trust
individual nodes, and use encrypted channels (IPsec, SSL, whatever) between nodes that trust each other.
When this will happen is far less clear, and it may be that DISA is a bit premature here. But this is coming, get used
Sent from Windows Mail
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
Re: DISA eliminating firewalls Bennett Todd (Jul 05)