What is Digg?85 Comments
- VipeNess, on 10/12/2007, -1/+18maybe they need to enable the DONT TAKE THE LAPTOP OUT OF THE F'ING BUILDING TO SHOW OFF TO YOUR WIFE OR HUSBAND THAT YOU GOT COOL TOOLS AT WORK!! that would be a great bill to pass.
- screwzluse, on 10/12/2007, -1/+18Wow... So you're saying that it's bad for this government to mandate laptop security of sorts (which would protect sensitive data) because it's Bush doing it and we should wait another 2 years for someone else. That's good thinking.
- inactive, on 10/12/2007, -0/+12Why even use a hard disc? The military has laptops in the field that have basically a small OS w/ light-weight web browser installed in ROM, and all data is sent to a "mainframe-esque" central server via encrypted satellite uplink. That way if they get compromised in the field, no data is available from any storage media. All the applications are run via a presentation server similar to Citrix (the name escapes me at the moment).
I think if you're truly paranoid about data security, this seems to be the way to go. - saqib, on 10/12/2007, -0/+12These might help:
http://digg.com/security/List_of_Full_Disc_Encryption_products
There are some agencies in DC looking into full disc encryption. The following are some reasons why full disc encryption is preferable.
1) Encryption of temporary / swap is important as confidential data
maybe revealed from these files in case of HDD theft.
2) Quick Erase functionality as advertised by Seagate's FDE.2 drive
provide immediate data destruction by replacing the AES key on the
ASIC. This can save thousands of dollar the agency spends in proper
destruction of the HDD. Once the encryption key is removed the HDD can be repurposed.
See
http://www.seagate.com/docs/pdf/marketing/po_momentus_5400_fde_bb.pdf
3) user-proof. everything is encrypted if FDE is enabled.
4) pre-boot authentication. - Moscube717, on 10/12/2007, -5/+15OK people a little perspective here. This is a GOOD thing. I am all for the government trying to protect their information (and ours). How could data protection be a bad thing?
Also, you may not agree with the decisions that the president makes, but remember he is the EXECUTIVE branch of govt. He enforces the laws, he doesn't make them. He can suggest, not make. That is the job of Congress. The presidency is more than one man, and the policies a collective view of many people within the administration. If you don't agree, attack the politics and the policy, not the man. Personal attacks make you look like the uneducated whine bags that you are. - tony23, on 10/12/2007, -1/+11So, you want the government to stop keeping secrets - you mean secrets like my personal info that they had stored on the computer? (I'm one of the vets whose info was on the stolen computer).
So, just to clarify: You would rather have the government PUBLISH my info than keep it private?
Tell you what - publish yours first, then we'll talk. - AXNJAXN, on 10/12/2007, -2/+11Let's suppose this mandate didn't exist. Would there be people ranting about how the Bush administration has failed to put security practices in place? You bet.
Bush won't be in office forever. I'm looking forward to the end of "durr bsuh is stupdi" and "Bush is a nazi". - WorldGroove, on 10/12/2007, -5/+14@Paktu
At least give Bush a chance! =^D
I'm not saying it's 100% full-proof.....but I can't see all that stuff you mentioned starting from encrypted harddrives. - StammesOpfer, on 10/12/2007, -1/+9unfortunately that is how most things work in government not only during this administration but all and it is simply a matter of having too many people handling something that they know nothing about but wanting to get a piece of whatever money could potentially be made that's politics
- wvdavis, on 10/12/2007, -3/+10Oh so the government can have secure laptops, but Joe citizen can't have a secure phone call or e-mail?
/sarcasm - inactive, on 10/12/2007, -2/+9USB keys are easily stolen though, so that to me seems like a silly idea. Biometrics is probably the better route. Although the Arabs seem to be rather good at cutting off people's body parts.... :(
- Piglith, on 10/12/2007, -0/+6This should have been mandated long before Bush. I'm just glad to see something like this actualy being done.
- hockeygoon15, on 10/12/2007, -3/+8waterdragon, you're an ass. i don't see how the government mandating security on their laptop's can be turned into something against bush.
all i have to say is i voted for him and i'm glad it pisses you off =oÞ - Moscube717, on 10/12/2007, -1/+6I never knew that a working knowledge of the way the government operates constitutes living under a rock. Maybe you should put down comic books and turn of the television, and enter a classroom. I am not really young, I just have information, and plenty of life experience. But once again, you are attacking a person (me) and not an idea. Contrary to what Hollywood would have you believe, the government does things right sometimes, and we should show our support when they do, just as we should show our disdain when they screw up.
What was it exactly about my first post that you find fallacious anyway? I didn't see anything in your reply constituting a contrary assessment. - halleyscomet, on 10/12/2007, -3/+7Well of COURSE not.
If private citizens can do something without the government knowing about it, then the terrorists win! - joeyjojo, on 10/12/2007, -0/+4"I think if you're truly paranoid about data security, this seems to be the way to go."
But then you're just open to network security issue.
Better solution? How about enacting more saner work weeks in the USA so people don't have the need/pressure to put in an extra 10 hours over the weekend from home. - jav1231, on 10/12/2007, -6/+10Let's take them point-by-point, shall we?
Katrina: Started as a mayoral *****, proceeded to a governor's *****, then to FEMA. Wait, but Bush is at fault?
Iraq: Working pretty good. The big mistake wasn't going in it was holding back.
No Child Left Behind: I don't ge this...this one is working well. Make the school shape up or let the kid move to one that is worth a *****. WTF is wrong with that?
Homeland Security: Not sure where this is going. I'll give you an "it's not perfect."
Agricultural reform: as in!?
campaign finance reform: Agreed. They never should have listen to McCain.
Sarbanes-Oxley: Granted. A joke. But did you know it bears the names of the politicians who wrote it? Don't see Bush there.
immigration reform: This one I'll give you. Democrats and Bush are both WAY to left on this one. - NSMike, on 10/12/2007, -5/+9Oh, sure, NOW he's worried about our privacy.
- coachace, on 10/12/2007, -0/+4This is a good thing, but long overdue, IMHO.
- CypherXero, on 10/12/2007, -1/+5If only they would use something like TrueCrypt. But no...they'll probably commission their own software that will cost millions of tax dollars, and end up being ***** and full of security flaws.
- pabster, on 10/12/2007, -1/+4Amazing liberals can find ANYTHING to bash Bush for. He mandates encryption to protect YOUR data and you have a complaint? Get a ***** grip.
The only bright side to your whining is that it is going to guarantee another Republican victory in 2008. - ender78, on 10/12/2007, -1/+4Wow, I thought this thread was posted under tech and not politics.
Forcing agencies to encrypt data is a good idea. Asking them to do so in 45 days is impractical if not impossible. It will likely take at least 45 days if not much longer to look into which solution is best. The feds are just washing their hands of the issue [We told em to encrypt ! We even wrote a memo ! With letterhead and everything . We don't understand why they couldn't get the job done for $10 on 20 thousand laptops]. - MasterDwarf, on 10/12/2007, -0/+3Gee, good thinking!
-Veteran that could still have his ID stolen due to lack of competence in government personnel. - inactive, on 10/12/2007, -0/+2@ joeyjojo
"But then you're just open to network security issue."
Not if your network/systems admin is worth a *****. Cisco provides a software-based VPN client that is EXTREMELY secure, and I'm sure there are others as well. Watchguard makes a hardware SOHO home-use firewall that serves as a remote VPN connector - we've had great experiences using those. All of the info. is sent across the line using up to 256-bit encryption. AES even. Even if you managed to intercept the data, you couldn't do anything with it.
But yeah you are right when you say ultimately THE MOST secure way is not to allow laptops. - tehgooch, on 10/12/2007, -4/+6This won't do anything if the user is dumb as a rock. Social engineering FTW.
- apocalizer, on 10/12/2007, -1/+3Well now at least you can't blame the administration for not trying to do something about it when the government goes bankrupt because someone stole a laptop with everyone's tax info on it. Instead you can blame the civilian agencies.
- DigitAl56K, on 10/12/2007, -0/+2No. It's virtually useless.
Try something like DriveCrypt Plus Pack ( http://securstar.de ).
Personally I won't be buying any encryption software from the US, given all the various government agency interests in backdoors, and the manner in which the government has been acting with respect to the privacy of its own citizens lately. - lbeaty1981, on 10/12/2007, -0/+1From the article: "The memo follows a wave of high profile data thefts and major security breeches..."
Major security pants? Are people afraid of losing their pants now or something? Oh wait, I think they meant "breaches".... - astorm, on 10/12/2007, -1/+2The only reason why this one got promoted and yours didn't is because he used one of the keywords, "Bush Administration", to get promoted like all those others who get promoted because they have Xbox, Apple, or Digg in their description not because they are actually promotion-worthy.
- Piglith, on 10/12/2007, -1/+2Ill agree to that...
"The only bright side to your whining is that it is going to guarantee another Republican victory in 2008."
Any reasonable person sees its it this way. Who would vote for a party that has done nothing but bash. I'll have to give it to Bush he has had one HELL of a lot on his platter. I can't compare any other President having to deal with so many things and I would hate to have that kind of responsibility. The opposition is only (excuse the pun) Digging them self a deeper grave. - pabster, on 10/12/2007, -0/+1I'm going to bet on RSA. Which is hardly a bad choice.
- inactive, on 10/12/2007, -0/+1@badbox
Look up a few posts. Apparently you missed it. - OBKenobi, on 10/12/2007, -0/+1The New York Times has a similar system. They use a Nortel VPN with cards that display a new passcode every couple of minutes. You have to type in the passcode along with your name/password.
http://products.nortel.com/go/product_content.jsp?segId=0&catId=null&parId=0&prod_id=34820&locale=en-US - hackwrench, on 10/12/2007, -1/+2If you're forced to comply, it really isn't a recommendation now is it?
- gosix, on 10/12/2007, -1/+2Yeah, a person *happened* to take a confidential data CD, and *happened* to lose his/her laptop shortly thereafter. Wonder how much that dimwit got paid for the "stolen" information and say "duh, someone just plain stole mah laptop computer."
- inactive, on 10/12/2007, -11/+12Oh piss off. Bush has done plenty of good things, it's just the media only reports on the bad so you all think that's the way things really are.
This is a GOOD thing, you're just pissed because you're a lefty and Bush is going to get credit. Why don't YOU do something useful like this or STFU. - kilmer, on 10/12/2007, -1/+2Old news, but looks like your title was better than mine. Either way its a good thing to see.
http://digg.com/security/U.S._Government_mandates_laptop_security - AnotherBrian, on 10/12/2007, -0/+1You mean they don't do this already?!
- Ingwenya, on 10/12/2007, -0/+1Horse has bolted, now closing stable door.
- tony23, on 10/12/2007, -0/+1@badbox - speak for yourself. As a veteran, I can say there are a fair number of Federal Civilian Agencies that have MY data.
- kilmer, on 10/12/2007, -0/+1The fact is (as the article states) most agencies already have the technology in place just not enforced, so this will hopefully get those idiots to start to think twice before taking their laptops and other mobile devices home. I do agree that the 45 days is just something used as a political move to make it look like they are concerned with what is becoming a reoccurring issue.
- pr0t3st, on 10/12/2007, -0/+1Interesting.
One of my relatives works for Lockeed-Martin and has to dial-in directly to Langly when working from home. The relative uses a randomly generated passcode that changes every 6 minutes.... - OBKenobi, on 10/12/2007, -0/+1[quote]At least give Bush a chance![/quote]
Give AIDS a chance!
He's had enough chances. - xst4t1kx, on 10/12/2007, -0/+1"giving federal civilian agencies just 45 days to comply with new recommendations"
Dead-line... to comply... with recommendations. Something seriously twisted in that statement. - evilbob333, on 10/12/2007, -4/+5@AXNJAXN
Yeah I'm looking for that too. My only gripe is that in two years it's going to be "(insert name of new Republican president) is a Nazi" cause the Democrats can't get beyond the name calling. - hydrokayak, on 10/12/2007, -0/+1The Bush Administration is giving federal civilian agencies just 45 days to comply with new recommendations for laptop encryption and two-factor authentication.
Notice it says RECOMMENDATIONS. Doesn't that imply that you don't HAVE to follow the recommended task? In my book, a recommendation is something that is only suggested, and not required. - jgeorgeson, on 10/12/2007, -1/+2I'm more inclined to think he's worried about his own privacy, what with all the treasonous reporting on publicly disclosed domestic spying activities ...
- Piglith, on 10/12/2007, -0/+1I correct myself. If the hardware is in a secure area (IE a millitary base) it will not leave that secure area, at least its not supoes to. If it is then I would hate to be that person caught with it leaving the area. Just to access a millitary base you have to be "Cleared" and have "Clearence". Taking any base equipment off base would result in loosing your "Clearnce".
Old hardware isn't even allowed to leave a base. It will ether sit in a store room or it will be distroyed. Now that is millitary, but this artical is for "federal civilian agencies". - OBKenobi, on 10/12/2007, -0/+1Has the US DoD installed WGA on its Windows desktops yet? I wonder what they think about that gaping security hole?
- geomon, on 10/12/2007, -2/+2"The only bright side to your whining is that it is going to guarantee another Republican victory in 2008."
Then you've just guaranteed that the Republic will be bankrupt by 2012. You can't trust Bush and his Republican Congress to be fiscally conservative. I wouldn't put much stock in Bush's replacement being much better at managing the financial affairs of the country either.
Republicans and Democrats are two sides of the same bad penny. -
Show 51 - 85 of 85 discussions
Check out the new & improved 
© Digg Inc. 2009
— Content created and posted by Digg users is