- cross-posted to:
- [email protected]
- cross-posted to:
- [email protected]
Anonymous: Trump is making America weaker and we’ll exploit it. The international hacker community is preparing to strike against U.S. infrastructure and calls for public awareness against incoming fascism
Yeah, they’re running around the Treasury Dept right now.
Having worked with government agencies and a lot of large private organizations the thing that keeps them mostly secure is the amount of red tape involved with things. Patching a production system requires a teleconference with at least five different people and no one person knows everything.
The idiots without any security experience coming in to “streamline” things will just make the systems even more fragile and insecure.
Known and vetted systems are always the most secure. Until RSA is broken, and then they’ll need to update to a quantum resilient standard. Which we’ve had in the wild for 6 years already and the NIST has officially approved for 2 years.
We’re still at least a decade away from a machine with enough qbits to do it. So i feel like we should be fine.
It’s the fucking Credit Bureaus, Telecoms, and Energy Companies I worry about. They keep fucking up.
https://www.nist.gov/news-events/news/2022/07/nist-announces-first-four-quantum-resistant-cryptographic-algorithms
Anyone who complies with the NIST standards is in a good place.
The problem is that a lot of places are not in compliance with NIST standards.
I know, I’ve helped patch them.
Yep, but we’ve got at least a decade to do it, and when new systems are stood up they “should” be in compliance.
Based on my experience if we say it needs done in a decade it will never be done.
See also: All the unemployment systems running on FORTRAN
FORTRAN could be said to be security through obscurity though /s