[Info-vax] BridgeWorks
David Wade
g4ugm at dave.invalid
Mon Jul 22 17:00:21 EDT 2024
On 22/07/2024 19:45, Scott Dorsey wrote:
> Simon Clubley <clubley at remove_me.eisner.decus.org-Earth.UFP> wrote:
>>
>> A secure environment can become an insecure environment over time without
>> any changes having been made to the secure environment.
>
> I disagree. That does not happen when you control the whole environment,
> and there are dedicated applications where you can.
That can still happen, if the environment has any way to access it
externally. So if for example it used the original AES encryption over
IP then it was secure, but it may not now be secure. When installed it
was secure against wire sniffing now it isn't.
I know in for example a military setting you can control every port,
make sure no one brings in a Wifi sniffer, but in a typical commercial
setting?
>
> But as soon as you need to interact with systems that you don't control,
> you no longer have control of the environment, and that is usually a fact
> of life in the modern world where everybody wants everything integrated.
Very true..
> --scott
More information about the Info-vax
mailing list