OPM Data Breach - Whitehouse Petition - Help Wanted

• Previous message (by thread): OPM Data Breach - Whitehouse Petition - Help Wanted
• Next message (by thread): OPM Data Breach - Whitehouse Petition - Help Wanted
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

--- bill at herrin.us wrote:
From: William Herrin <bill at herrin.us>

The core problem here is that the Authority To Operate (ATO) process
consumes essentially the entire activity of a USG computing project's
security staff. The non-sensical compliance requirements, which if
taken literally just about prevent you from ever connecting any
computer to any other, get in the way of architecting systems around
pragmatic and effective security.
--------------------------------------------


"non-sensical compliance"  Yeah, that.  Pure, unmitigated insanity.

scott

• Previous message (by thread): OPM Data Breach - Whitehouse Petition - Help Wanted
• Next message (by thread): OPM Data Breach - Whitehouse Petition - Help Wanted
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]