Comments on: The Rule of Thumbs

By: Ross D

Ross D — Mon, 05 Jan 2009 21:17:28 +0000

Problem is that folks use thumb drives to transfer files from unclassified computers to classified computers (against the rules but folks do it anyway) and they carry virus upstream with the files. Until scanners can be modifed to scan USB devices before allowing a connection they will be a hazard.

By: clyde ward

clyde ward — Sat, 03 Jan 2009 07:33:49 +0000

So, Russian or Chinese hackers manage to breach the Pentagon and so they ban thumbdrives for all DoD? Ever occur tothem, that their firewalls just ain’t that good?

By: clyde ward

clyde ward — Sat, 03 Jan 2009 07:19:45 +0000

How about banning pencils and pens, so we can only compromise security to the point that we can remember anything? This is the same organization that had bunches of us making paper airplanes in order to show us how an assembly line worked (no kidding-Lean Sigma 6-right?) and has an Acquisitions Course that starts out teaching arithametic (“what does the “+” sign mean?-no kiddding) The only solution is for the DoD to get a little bit smart or just go back to technology they are comfortable with-like the flintlock musket. And why, to begin with, are all teh DoD systems hooked into one system? Why can’t we have local cell networks that handle low security traffic without al the BS? If that gets breched, so what? By the time we find out about it, the Russians will find out about it, too-“Who cares about this?’ sort of thing. Let teh Top Secret boys have their own network and ban anything they want from it.

By: eTERNAL rEACH

eTERNAL rEACH — Fri, 02 Jan 2009 05:47:07 +0000

Why can’t we all just get along?

By: Kevin MW Hughes

Kevin MW Hughes — Thu, 01 Jan 2009 16:39:32 +0000

Thumbdrives, by themeselves, should not be the point of focus here. It is the USB Port not being protected in having scan capability prior to the reading of the data device. Hardware data intake for all computer puposes in Government should have protection built into them.
My recommendations are these:
–Fix the USB Ports or add/hard connect another piece of hardware to these ports to plug the Thumb or other data storage into. This interface allows for scanning and encryption recognition of the Thumb or other pre-authorized date storage device. This interface iteself has a crptyic code only working for government computers by IM security and can be recoded as needed, so if lost or stolen it is not easily used with another computer system.
–Thumb drives now come with some encryption capability. Government used thumbdrives should have a code identifier that can be tied to a password of the user. This same identifier would be ID’d into the government computer system for that employees function/area. So, if the government employee tries to use it on a non-government computer it will not work, and if the employee looses it it cannot be opened on any other computer. The ID code is loaded into the interface mentioned above and the interface can also lock out the thumb drive should the employee be terminated or removed from authorization from that access area.
–If necessary the USB/Thumb interface device can also be programmed to recognized unauthorized downlads from non-government sources to reduce piracy of copywrited materials.
Overall, Government Computers should not be off-the-shelf models, but cusomized for security. We keep trying to use off-the-shelf and continue to have off-the-shelf problems. Establish a system of closed-house computers and have closed-house problems which enable security to identify faster the breaches and weaknesses of the system, allowing it to work faster and more secure.
Kevin MW Hughes

By: Chris Daguanno

Chris Daguanno — Thu, 01 Jan 2009 14:39:39 +0000

Thumb drives are a no go yet external HDs are OK. This makes no sense and is just plain counterproductive for our DoD workforce. The Navy is crippled with NMCI which is in itself crippled by the most insecure operating system available: Windows. I’ve sat in meetings with IT “professionals” who don’t have any certifications, let alone a degree, who don’t have the faintest clue as to the vulnerabilities that really ail our networks.
Like many government organizations and policies, security is rooted in significantly inconveniencing those involved. See TSA. This is no different.

By: Jim

Jim — Thu, 01 Jan 2009 12:46:36 +0000

Just get rid of all the computers. Problem solved.

By: Kalroy

Kalroy — Thu, 01 Jan 2009 05:29:42 +0000

Our directive (USAF/Edwards AFB) is no removable media. Period. No iPods, no thumbdrives, no CDRs, no nothing.
Unless it was government issued and scanned by IT. Essentially this means no thumbdrives for the peons.
Kalroy

By: Matt Musson

Matt Musson — Wed, 31 Dec 2008 19:27:45 +0000

We all know this is how agents will attack the Defense network when the real fighting starts. Or, just before.

By: Getch

Getch — Wed, 31 Dec 2008 09:33:06 +0000

To all out there with nothing to do but write your negative opinions about something as unchangable as the speed in which technology advances, shame on you. Get with the program. Some of you are actually writing ridiculous comments like the one by Mr.Dale Swanson. RIDICULOUS !!