On CHOW: How to avoid dirty looks at cafes

BNET Business Network:: BNET; TechRepublic; ZDNet

January 28th, 2008

US Government seeks to invest $6 Billion in security by obscurity

Posted by Richard Stiennon @ 8:32 am

Categories: Security Industry News, State Sponsored Hacking

Tags: U.S. Congress, U.S. Government, Transparency, Security, Richard Stiennon

According to the Wall Street Journal this morning the Bush administration is pushing to spend $6 billion on cyber security in one year! They claim that US telecom systems are not adequately protected and that they need to spend this money to protect it. Just one problem, the government is not revealing to Congress just how these funds will be spent.

First of all let’s put some perspective around the size of this budget. $6 billion is larger than the entire industry for firewalls. That’s right, the total sales of firewalls from Check Point, Cisco, Juniper, Watchguard, Sonicwall, and twenty other vendors, world wide, is less than $6 Billion. The entire security industry for products is less than $24 Billion.

So just how could the Federal Government spend $6 Billion on cyber security? They are not saying. They are asking Congress to buy a pig in a poke. Of course you will see the DHS claiming that these new investments must remain secret to be effective. I beg to differ. There is *no* security in secrecy when it comes to effective cyber defenses. Just as the best security in cryptography is to use almost impossible to break but completely transparent encryption schemes, the best security for networks and systems is that which can not be penetrated even if every detail is published and open.

Congress should stick to their guns and refuse to grant funds for secret cyber defense solutions. Yes, investment is needed - more in new policies and rigid enforcement that anything else. But granting a carte blanche to the Department of Homeland Security for $6 Billion a year in budget will result in only one thing: a new cyber bureaucracy.

Transparency is good for security. The administration should earmark these funds for specific departments and specific security measures. Otherwise there will be no metrics, no accountability, and they will be back at the trough next year asking for money to accomplish more secret goals.

Richard Stiennon is an industry consultant. See his full profile and disclosure of his industry affiliations.

Talkback
Most Recent of 28 Talkback(s)

Thread View
Flat View

I completely agree with Stiennon: Good article.

This budget item has Illegal Pork written all over it. (Read the rest); Posted by: Hobyx Posted on: 02/06/08 You are currently: a Guest | Log in | Terms of Use

I am sure almost $500M will go to security TripleII | 01/28/08

Ouch! RStiennon | 01/28/08

Sorry, was having a dissolustioned hair day. TripleII | 01/29/08

that 8.5% for "actual security products and processes." Jack-Booted EULA | 01/28/08

Maybe they should take a lesson Linux User 147560 | 01/28/08

Bravo for more security! Shelendrea | 01/28/08

Actually 6 Billion isn't unreasonable voska1 | 01/28/08

It isn't unreasonable, but ... Larry the Security Guy | 01/29/08

Security costs voska1 | 01/28/08

Seceret from who? No_Ax_to_Grind | 01/28/08

Yes Altotus | 01/28/08

Don't you have to jail all the moles in the government first? osreinstall | 01/28/08

Vote for Ron Paul. He never met a porkbarrel... TranMan | 01/28/08

Ummm, why aren't the telecoms paying to secure their own systems? No_Ax_to_Grind | 01/28/08

Why should they? voska1 | 01/28/08

Either way, its not the tax payers problem. No_Ax_to_Grind | 01/28/08

Better idea voska1 | 01/29/08

I gotta go with No Axe. TripleII | 01/29/08

I agree in part voska1 | 01/29/08

Point Taken TripleII | 01/29/08

Making slaves pay for their own chains ... terry flores | 01/28/08

I'd would have thought it obvious... Henrik Moller | 01/29/08

Security Through Obscurity ParrotHeadFL | 01/29/08

It depends on what is obscure. TripleII | 01/29/08

Not so much what but what else voska1 | 01/29/08

Remember hammers and toilet seats arthurh@... | 01/29/08

I lost weight TripleII | 01/29/08

I completely agree with Stiennon Hobyx | 02/06/08

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Virtualization: Architectural Considerations And Other Evaluation Criteria VMware Of the many approaches to x86 systems virtualization available in the ... Download Now
VMware Infrastructure: A Guide to Bottom-Line Benefits VMware Frustrated by the costs of maintain ever larger data centers?or building ... Download Now
Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now

Recent Entries

Blogs From Our Sponsors

Top Rated

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Archives

Favorite Links

Blogroll

ZDNet Blogs

White Papers, Webcasts, and Downloads

Reducing Server Total Cost of Ownership with VMware Virtualization Software VMware VMware virtualization enables customers to reduce their server TCO and ... Download Now
The Impact of Virtualization Software on Operating Environments VMware Today's use of virtualization technology allows IT professionals to ... Download Now
Building the Virtualized Enterprise with VMware Iinfrastructure VMware VMware virtualization software has been adopted by over 120,000 enterprise ... Download Now

Popular Sanity Saver Videos

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More