{"id":2591,"date":"2020-07-28T10:43:30","date_gmt":"2020-07-28T14:43:30","guid":{"rendered":"https:\/\/zzzptm.com\/wordpress\/?p=2591"},"modified":"2020-07-28T10:43:30","modified_gmt":"2020-07-28T14:43:30","slug":"the-fallacies-of-network-security","status":"publish","type":"post","link":"https:\/\/zzzptm.com\/wordpress\/?p=2591","title":{"rendered":"The Fallacies of Network Security"},"content":{"rendered":"\n<p>Like the Fallacies of Distributed Computing, these are assumptions made about security by those that use the network. And, like those other fallacies, these assumptions are made at the peril of both&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/project\">project<\/a>&nbsp;and productivity.<\/p>\n\n\n\n<p>1. The&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/network\">network<\/a>&nbsp;can be made completely secure.<\/p>\n\n\n\n<p>2. It hasn&#8217;t been a problem before.<\/p>\n\n\n\n<p>3.&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/monitoring\">Monitoring<\/a>&nbsp;is overkill.<\/p>\n\n\n\n<p>4.&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/syslog\">Syslog<\/a>&nbsp;information can be easily reviewed.<\/p>\n\n\n\n<p>5.&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/alerts\">alerts<\/a>&nbsp;are sufficient warning of&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/malicious\">malicious<\/a>&nbsp;behavior.<\/p>\n\n\n\n<p>6. Our competition is honest.<\/p>\n\n\n\n<p>7. Our&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/users\">users<\/a>&nbsp;will not make mistakes that will jeopardize or&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/breach\">breach<\/a>&nbsp;security.<\/p>\n\n\n\n<p>8. A perimeter is sufficient.<\/p>\n\n\n\n<p>9. I don&#8217;t need security because nobody would want to&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/hack\">hack<\/a>&nbsp;me.<\/p>\n\n\n\n<p>10. Time correlation amongst&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/devices\">devices<\/a>&nbsp;is not that important.<\/p>\n\n\n\n<p>11. If nobody knows about a&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/vulnerability\">vulnerability<\/a>, it&#8217;s not a vulnerability.<\/p>\n\n\n\n<p>Effects of the Fallacies<br>1. Ignorance of&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/network-security\">network security<\/a>&nbsp;leads to poor&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/risk\">risk<\/a>&nbsp;assessment.<br>2. Lack of monitoring,&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/logging\">logging<\/a>, and correlation hampers or prevents&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/forensic\">forensic<\/a>&nbsp;investigation.<br>3. Failure to view competitors and users with some degree of suspicion will lead to vulnerabilities.<br>4. Insufficiently deep security measures will allow minimally sophisticated penetrations to succeed in ongoing and undetected criminal activity.<\/p>\n\n\n\n<p>I wrote this list for the purpose of informing, educating, and aiding any&nbsp;<a href=\"https:\/\/www.peerlyst.com\/tags\/non-security\">non-security<\/a>&nbsp;person that reads it. Failing that, it serves as something that I can fall back on when commiserating with other security guys.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Like the Fallacies of Distributed Computing, these are assumptions made about security by those that use the network. And, like those other fallacies, these assumptions are made at the peril of both&nbsp;project&nbsp;and productivity. 1. The&nbsp;network&nbsp;can be made completely secure. 2. It hasn&#8217;t been a problem before. 3.&nbsp;Monitoring&nbsp;is overkill. 4.&nbsp;Syslog&nbsp;information can be easily reviewed. 5.&nbsp;alerts&nbsp;are sufficient [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[12],"tags":[],"class_list":["post-2591","post","type-post","status-publish","format-standard","hentry","category-security"],"_links":{"self":[{"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/2591","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2591"}],"version-history":[{"count":1,"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/2591\/revisions"}],"predecessor-version":[{"id":2592,"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/2591\/revisions\/2592"}],"wp:attachment":[{"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2591"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2591"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zzzptm.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2591"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}