Is their anything the Chinese won't steal or counterfeit? I know this has been going on for years but this is getting ridiculous...
http://www.nytimes.com/2013/05/07/wo...pagewanted=all
Operation Shady Rat.
IF the Chinese were harming our economy through bombing buildings we would be at war.
THey are, arguably, harming our economy more than simple physical infrastructure damage, as the theft is massive.
We will have to decide what to do about it, and soon. The fact that it is their government that is behind it, makes it extremely important for us to do soemthing.
cut them off
LOL...
We have known about such things for years. Did the NY Slimes finally get the memo?
So the question remains...how do you stop it? Trade tariffs maybe? But that could start an economic war...
I can't believe it is happening in the first place. The military network and government networks should not be accessible via internet. Just cut such connections. I say it is far more likely that the government/military keeps an accessible set of addresses, for counterespionage/misinformation. That this doesn't really happen without the NSA allowing it to happen. Otherwise, we have some really daft people in the government now. I have dealt with the NSA during the cold war. If such a thing is real today, it never happen today if the wall was still standing.
I don't know how many times I have to tell you this, but what you're suggesting is impossible. You can't just cut off military networks from the internet. Heck, half of the services that the military has are ON the internet now. It's just not feasible. (Note, our secret network is separate.)
Also, that won't stop the Chinese from hacking Boeing, General Dynamics, and other companies that are highly involved with the military.
Sorry, but I don't buy it. If these systems are accessible it is either through incompetence, a traitor sharing private keys, or intentional for counter espionage purposes.
ing .
smh
WC instantly knows more than a guy that ing works in Military IT.
It's really amazing, in a perverse way. Kinda like your avg. Boutons post. You just have to marvel at the lack of cogent thought.
For any coded message or data to be broken, they are either not using a private key, or there is a traitor giving then such a key. If systems are not compartmentalized, then there is incompetence in their setup.
WC, when was the last time you accessed a military network? Why don't you actually try to do some reading. Heck, read up on the AFNet and its design. Also, you know no network is completely securable, right? They hack into government files the same way hackers slip in everywhere else: social engineering, exploiting firewall holes, etc etc.
The more you lock down a network, the more complexity/cost/lag is added as well. The govt has to perform cost/benefits analysis for networks too. We aren't going to throw $10k encryptors on everyone's desktop.
On and PKI isn't some unbreakable/uncrackable holy grail:
http://www.darkreading.com/vulnerabi...ws-i/218900008
http://m.infoworld.com/t/cyber-crime...ans-did-172173
The military have private PKIs in some instances but the same issues can arise.
And while I don't know of any Taclane/Fastlane hacks out there, you could get access if you really tried, either due to lack of mantraps, shoulder surfing, etc etc.
OK, you are saying we have fools in charge.
Like I said... Incompetence.
Please note, I specified "private key." PKI is public key. A private public key is still a public key and can easily be broken with the right technology, no matter how long. A private key with enough encryption bits is unbreakable.
No key is "unbreakable", because someone controls the code somewhere. Heck, hackers have already found a way around quantum cryptology.
Saying that "people are incompetent" is a reason that networks get broken into is like saying "people are incompetent" because traffic accidents happen. On a network with millions of users, you are going to have weak links in the chain. You can do your best to prevent it through training, but its by no means foolproof.
Confidentiality, integrity, availability... You can have two of them.
edit: also, I think I get what you're saying about PKI but you're saying it in an awkward way. And afaik, brute forcing the encryption algorithm on a private key wouldn't be very time/resource effective
Last edited by LnGrrrR; 05-10-2013 at 09:25 PM.
Private keys are simply unbreakable with enough encryption bits.
What exactly do you mean by "private keys"? The keys in PKI are considered "private" after all. Could you give me an example of the private key you're talking about?
abd nothing is technically unbreakable, just virtually unbreakable for all intents and purposes. And you don't need to break it if you can figure out the key from whoever knows it.
have the nazis surrendered yet?
pentagon reports
I private key system does not allow exchanges of keys. Therefore, without the key, you cannot get in. Any public key system relies on key exchanges and therefore can be reverse engineered to make a copy of the key used.
Care to give me an example of a system like the one you're describing?
military has their network, smil.mil (secure military). I don't think the run their own network, but run encrypted tunnels over the commercial network. When I consulted for DNS in MDA is Colorado 10 years ago, they ran a Sidewinder firewall, which is double-wall firewall, based on FreeBSD, where each "wall" is a different blocking/filetering/proxying technology so cracking one wall's weakness (which should raise an alert) is useless for cracking the second wall.
It is quite amazing after all the 100Ms of stolen passwords, cc numbers, ss numbers, $Bs lost, etc, etc over many years that so much of it continues.
However, as any security expert says, the weakest link is always the users.
It has no exchange of data in the manners public key systems use. You simply start sending, the other end starts decrypting.
There is simply no key exchange! No key exchange means no breaking the key. Both ends must already be in possession of the key before the transaction starts.
So then, there is some exchange, because both parties have to come in possession of it somehow. Again, the system you're describing is still susceptible to social engineering, or hacking the terminal containing the data once the data is decrypted, etc etc.
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
Reply With Quote
