Re: Next Generation Security Architecture

[Lance Spitzner <lance () spitzner net>]

On Fri, 16 Feb 2001, Marcus J. Ranum wrote:

> I was recently meeting with a bunch of venture capitalists and they
> asked me "why won't someone just build an all-singing all-dancing
> chop-dice-slice-shred-floorwax-dessert topping security system and
> own the whole market?" (implying I should)   I don't think it's possible
> because in order to "do it right" one would need to build best-of-breed
>
> That's a huge order. I don't think it's possible to solve all those problems
> simultaneously and well. It's possible to solve them all simultaneously
> and badly - by acquiring technology and trying to glue it together with
> duct tape, spit, and wet soap.

My experience tells me that for effective security, risk must be mitigated
at all layers of an organization, from physical, application, networking,
social engineering etc.  Any weakeness in any layer exposes an organization
to risk.  I personally do not see how a 'single' solution can touch all
of the layers invovled.

lance

_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards