-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On 07/14/2015 08:52 AM, dan@geer.org wrote:
Discussing security policy post-OPM debacle in a setting to which I have access (sorry to be oblique), it was said by a CxO "We have to prepare for the day when no software we depend on is run on premises."
On the other hand, what about the day when you can't trust any software you don't run on machines down the hall because any or all providers can be legally forced to sell you out and never tell you? At least if you have your own data center, you know when you've pissed someone off enough to come after you because they have to knock on your front door. - -- The Doctor [412/724/301/703/415] [ZS] PGP: 0x807B17C1 / 7960 1CDC 85C9 0B63 8D9F DD89 3BD8 FF2B 807B 17C1 WWW: https://drwho.virtadpt.net/ "It's filled with seven cannon balls, and it doesn't talk." -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJVpVTGAAoJED1np1pUQ8Rkd/8QAIFx8am/MvckD4TdpHT2Acm9 EhmAorPmgkQ4iCjz+H4RcGLC51nMmdpQymE0pLe1Rl254qUf2uIhVS/GZNO0Q3+Q reKRwO+v1hz1zU82Ps8bDdr0E3PcfDyuUth1DU8rLeQTaeZD+ul1ngM1N57rQ6jy oMzUKnlcQ6jGs7tYJRgVlucyIEO1G/mxYdrK9yFyUCoYmZPzGaJVq7LcnqxJ/LBb FbeUj14sXJafKPE+MvawtVjMCtp2cAqs1+mWpS/40m7ZsQAxo7RSbHaI04vtJIA+ WXg2UxBbsFwe7mKTvI8i7IQPH2By2UZXqrakFwmQOcqZmyxoGEbUDnODv3L1+J8e A1qCVjUriD87xWD5VH2D9niGUoaEjeQIn8T1N0LsHUeqg/5XXeNpMbnJ808HXvsM S9hRZXNgDbcvRD0J+2STCVE8KOYYk4ejt0rTT+gvfM155Ioa25qpVRJ6CiF9ZYae /uFMh3XHxcwfEILbCQ/lX1OcEM7aA39yPUflt1ujnUYcB15Q9UEZ5gDOaVCMdag2 /0TZAPmzz4r8BfAloY+8YIJT0NbDzWtyKyS1+3miuNuRtx780ymXabHdDUv+hf1m xWrTc0QeKk96D0hsSvw536H8NFb7QDSoHyGDl2tpJ9ju/SNY7EQgyqtKmlk+73WC Pq7jfnIk9F0hk/seYrCj =9O10 -----END PGP SIGNATURE-----