The Fort Model

• Firewalls protect you at the gate

  • Sort of...

• Outside in the wilderness

  • no laws, no speed limits, no cops
  • Any protection is cryptography

• Inside, protection is compartmentation

  • enforced by access control
  • auditing, monitoring, and misuse detection

• Statistically, 70 to 90% of problem is insider

  • Hard to get precise numbers because this is sensitive stuff

Previous slide

Next slide

Back to first slide

View graphic version