On Tue, Apr 26, 2011 at 10:24 PM, Jason Van Patten <[email protected]> wrote: > failure to use such a system or another commercially accredited system > leaves you fiscally and legally liable for all nefarious activity conducted > from your computer.
This sounds like a very bad idea. What this would end up being, in practice, is essentially "computer insurance" - a service that everyone would have to purchase in order to own and operate a networked computer. The accreditation process for such a system would quickly become political and therefore end up as an ineffective, self-defeating or even internally inconsistent policy. But everyone would have to pay for it regardless, because to go without it (regardless of whether it actually provides security or not, and we all know that no policy or system will prevent all attacks) would be inviting legal trouble. It might work in a perfect world, but in a perfect world it wouldn't be necessary. > Pentagon needs it to secure the nation against internationally funded > cyber attacks like what Russia did to Moldavia The Pentagon is (finally) working on this problem. Based on what little I've read about it, it sounds like they're actually approaching it intelligently. I assure you that no-one here is more surprised about this than me. I would link the article I read, but it looks like my connection is broken again. /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
