YOUR FEEDBACK
Rapid Module Development for DotNetNuke
MICHEAL SMITH wrote: GO TO THE LINK, U HAVE EVERYTHING U WANT THERE. MICHEAL...
May. 17, 2008 01:09 AM
Did you read today's front page stories & breaking news?

SYS-CON.TV: How Do You Minimize Unpleasant Surprises in Your Java Code? Guest Nigel Cheshire

2007 West
GOLD SPONSORS:
Active Endpoints
Your SOA Needs BPEL for Orchestration
BEA
Virtualized SOA: Adaptive Infrastructure for Demanding Applications
Nexaweb
Overcoming Bandwidth Challenges with Nexaweb
TIBCO
What is Service Virtualization?
SILVER SPONSORS:
WSO2
Using Web Services Technologies and FOSS Solutions
Click For 2007 East
Event Webcasts

2008 East
PLATINUM SPONSORS:
Appcelerator
Think Fast: Accelerate AJAX Development with Appcelerator
GOLD SPONSORS:
DreamFace Interactive
The Ultimate Framework for Creating Personalized Web 2.0 Mashups
ICEsoft
AJAX and Social Computing for the Enterprise
Kaazing
Enterprise Comet: Real–Time, Real–Time, or Real–Time Web 2.0?
Nexaweb
Now Playing: Desktop Apps in the Browser!
Sun
jMaki as an AJAX Mashup Framework
POWER PANELS:
The Business Value
of RIAs
What Lies Beyond AJAX?
KEYNOTES:
Douglas Crockford
Can We Fix the Web?
Anthony Franco
2008: The Year of the RIA
Click For 2007 Event Webcasts
SYS-CON.TV
SYS-CON.TV WEBCASTS
JACKBE The Big A(architecture in AJAX)
INSTANTIATIONS Eclipse Rich Internet Platform with Taylor and Milinkovich
YAHOO! Applying AJAX to Speed User's Journey
ENERJY WEBCAST Java Code Quality Management
APP SERVER SHOOT-OUT with Microsoft, IBM, JBoss, Sun, BEA, and Oracle
TOP LINKS YOU MUST CLICK ON


Industry News
i-Technology Opinion: Will Cyber Storm "Break the Internet"?
"I Hate Cynics" – Information Storage & Security Journal Co-Editor-in-Chief Speaks Out

By: Patrick Hynds
Feb. 7, 2006 11:30 AM
Digg This!

Information Storage & Security Journal Co-Editor-in-Chief Patrick Hynds writes: The U.S. deparment of Homeland Security is performing a readiness test this month called Cyber Storm, after rescheduling. The Cyber Storm exercise is about ensuring and testing against a computer based attack or hack against public infrastructure targets as well as some parts of the private sector. This has caused some (on Slashdot.org for example) to decry it as idiocy that will only "break the Internet". These are likely the same people who would apportion blame if an attack came and we found ourselves unprepared.

You can't have it both ways. Either organizations should prepare for and test against potential attacks or they should not. Anyone who understands security knows that what does not get checked does not get done (that also applies to pretty much everything else in the world as well).

A point brought up in the critical banter on Slashdot was that by announcing the exercise, they were providing a perfect time for hackers to mask their activities. Had a detailed schedule and list of targets been provided then I would agree, but to expect a hacker to gain an advantage from the vagueness of the announcement would show that the speaker does not understand either side of the game.

During the course of my career, I have participated often in security audits, some of which included overt hacking attempts. In every case, I am certain that the exercise has greatly improved the security of the organizations involved and in some cases has headed off what would certainly have been devastating losses. Security is like any system maintenance that must be done. It can be done well or it can be done badly. More than once a misguided administrator has brought down a critical server with an error in scheduling or other configuration. To assume that the Cyber Storm will produce a negative result is cynical and if the cynics predict doom often enough they will certainly be correct eventually.

I say we avoid criticizing organizations that take steps to improve systems and hold the apportioning of blame until after there is something worthy of blame. I hate cynics.

Published Feb. 7, 2006 — Reads 13,528
Copyright © 2008 SYS-CON Media. All Rights Reserved.
About Patrick Hynds
Patrick Hynds, MCSD, MCSE+I, MCDBA, MCSA, MCP+Site Builder, MCT, is the Microsoft Regional Director for Boston, the CTO of CriticalSites, and has been recognized as a leader in the technology field. An expert on Microsoft technology (with, at last count, 55 Microsoft certifications) and experienced with other technologies as well (WebSphere, Sybase, Perl, Java, Unix, Netware, C++, etc.), Patrick previously taught freelance software development and network architecture. Prior to joining CriticalSites, he was a successful contractor who enjoyed mastering difficult troubleshooting assignments. A graduate of West Point and a Gulf War veteran, Patrick brings an uncommon level of dedication to his leadership role at CriticalSites. He has experience in addressing business challenges with blended IT solutions involving leading-edge database, Web, and hardware systems. In spite of the demands of his management role at CriticalSites, Patrick stays technical and in the trenches, acting as project manager and/or developer/engineer on selected projects throughout the year.

InfoPoint wrote: The DHS will not be firing cyber bullets at your networks this coming week. The exercise is scenario-driven and is designed to test the intercommunication capabilities and response procedures for several agencies and some private sector companies.
read & respond »
an0n wrote: Steps to prevent an attack: 1. Turn off the router 2. Turn off the computer 3. Turn on the tv and watch the next episode of "Another day" 4. Open a couple brew and relax Isnt that in everyone's computer emergency manual ?
read & respond »
LATEST LINUX STORIES
Kevin Hoffman's Review of Iron Man
By Kevin Hoffman
I took the advice of a friend of mine and steered clear of the 'normal' movie theaters and went a little out of the way to go to a DLP movie theater. The experience of comparing a regular movie theater to a DLP movie theater is like comparing standard def analog TV with a 1080i HDTV si
3rd International Virtualization Conference & Expo: Themes & Topics
By Jeremy Geelan
From Application Virtualization to Xen, a round-up of the virtualization themes & topics being discussed in NYC June 23-24, 2008 by the world-class speaker faculty at the 3rd International Virtualization Conference & Expo being held by SYS-CON Events in The Roosevelt Hotel, in midtown
Verizon Becomes a Counter-Android Linux Convert
By Maureen O'Gara
Verizon Wireless is snubbing Google's Linux-based Android initiative to go with the LiMo Foundation's mobile Linux spec for its next wave of mobile phones expected next year. Along with Verizon, Mozilla signed up - giving the consortium its first major open source ISV - and a key one f
Adaptec Launches New Series 2 RAID Controller For Linux Users
By Linux News Desk
Adaptec unveiled a new family of entry-level Unified Serial RAID controllers. The new low-profile Series 2 RAID controllers, built on the same Adaptec dual core RAID-on-Chip (ROC) architecture used in its successful Series 5 RAID controllers, provide significant performance enhancement
JavaOne 2008: Sun Challenges Linux
By Maureen O'Gara
Sun's mule train has finally pulled into Indiana after three years on the road. Indiana is the Linux-friendly Fedora-like OpenSolaris project meant to move the Solaris-shy Linux community off Linux and on to Solaris tempted by Solaris widgetry like the highly scalable, rollback-easy, 1
Curl Announces Support for Ubuntu for Enterprise RIA Platform
By RIA News Desk
Curl announced it has released the availability of an Ubuntu Installer for the Curl Rich Internet Application (RIA) platform. Curl is a Rich Internet Application platform that competes with Adobe AIR/Flex, Silverlight, and Ajax. Curl has been shipping with Linux support for RedHat 9, S
SUBSCRIBE TO THE WORLD'S MOST POWERFUL NEWSLETTERS
SUBSCRIBE TO OUR RSS FEEDS & GET YOUR SYS-CON NEWS LIVE!
Click to Add our RSS Feeds to the Service of Your Choice:
Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
Publish Your Article! Please send it to editorial(at)sys-con.com!

Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021
SYS-CON FEATURED WHITEPAPERS

MOST READ THIS WEEK
Microsoft & Linux: At What Point Is It Cheaper to Just Buy Novell?
By David Harrison
Those Heady Days of Sex, Drugs & Linux Are Over
By Maureen O'Gara
Samba Suffers Embarrassment of Riches
By Maureen O'Gara
Jury To Get Reiser Murder Case Soon
By Maureen O'Gara
rPath to OEM SUSE Linux Enterprise Server from Novell for Appliances
By Linux News Desk
JavaOne 2008: Sun Challenges Linux
By Maureen O'Gara
A Runtime Integration Approach to Application Development
By Indroniel Deb Roy; Alex Nhu
Microsoft & Novell Go to China in Search of Converts
By Maureen O'Gara
Behr Migrates Corporate Website to JBoss
By Linux News Desk
Linux Programmer Reiser Found Guilty of First-Degree Murder
By Maureen O'Gara
Novell Reduces Cost of Ownership for Linux on IBM System z
By Linux News Desk
OLPC's Founder Ready To Climb in Bed with Microsoft
By Maureen O'Gara
ADS BY GOOGLE