[ISN] Physical security and cybersecurity go hand in hand

From: InfoSec News <alerts_at_private>
Date: Wed, 18 Feb 2009 02:25:06 -0600 (CST)
http://gcn.com/articles/2009/02/17/cybereye-los-alamos-thefts.aspx

By William Jackson
GCN.com
Feb 17, 2009

Los Alamos thefts show that you can’t separate physical security from 
cybersecurity

The National Nuclear Security Administration recently dressed down Los 
Alamos National Security LLC (LANS), the contractor responsible for 
security at the Los Alamos National Laboratory, for its apparent 
mishandling of computer thefts from the weapons lab.

NNSA noted that the lab “had made great strides in improving the 
robustness of cyber security implementation,” in a Feb. 3 memo released 
by the Project on Government Oversight, a private watchdog organization. 
But cyber security is not a standalone effort. “For example, on January 
16, 2009, three computers were stolen from a LANS employee’s residence 
in Santa Fe,” the memo noted. “This incident has revealed several 
property management, accountability, incident reporting and cyber 
security concerns.”

The problem was that the theft was treated as a property management 
issue rather than a cyber security incident. And that was just the tip 
of the iceberg. “LANS has reported that 13 computers have been stolen or 
lost in the past 12 months, and that 67 computers are currently 
‘missing.’ The magnitude of exposure and risk to the laboratory is at 
best unclear as little data on these losses has been collected or 
pursued given their treatment as property management issues as well.”

In the early days of computing physical and cyber security were one and 
the same. Mainframe computers were locked in computer rooms and accessed 
by hardwired dumb terminals. But as computers became smaller, smarter 
and more ubiquitous, property and data were dealt with separately and 
there traditionally has been little reintegration of physical and cyber 
security. Today, data in any form can be the most valuable asset in any 
organization, government or private, and the proliferation of devices on 
which it resides means that physical security is becoming as critical to 
protecting it as cyber security.

[...]


_______________________________________________      
Best Selling Security Books and More!
http://www.shopinfosecnews.org/
Received on Wed Feb 18 2009 - 00:25:06 PST

This archive was generated by hypermail 2.2.0 : Wed Feb 18 2009 - 00:32:25 PST