-----Original Message-----
From: NIPC Watch
To: Daily Distribution
Sent: 2/8/02 5:53 AM
Subject: NIPC Daily Report 8 February 02
NIPC Daily Report
8 February 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Transportation Security Administration (TSA) faces strict deadlines .
John Magaw, the head of TSA, told the House Transportation
Appropriations Subcommittee on 6 February that the Transportation
Department has met the 17 February deadline for federalizing baggage
screeners, and that air carriers have begun transmitting passenger lists
from foreign airlines electronically. TSA officials soon will be
deployed to the nation's 429 airports to assess how much space is
available for new screening machines and how many are needed. (National
Journal's Technology Daily, 7 Feb)
House passes cyber security bill. The House voted 400-12 on 7 February
to approve $800 million over the next five years to continue researching
ways to protect computer systems from hackers. The Information
Technology Association of America said the bill is critical to building
a larger base of information security professionals and improving
information sharing. Current cyber attacks are generally confined to
harassment and defacing Web sites, but security experts predict assaults
will be more dangerous in the future. (Associated Press, 7 Feb)
Super threatening. President Bush last month lifted sanctions that
previously prevented US technology firms from selling high-speed
supercomputers to several Tier 3 countries. Russia, China, India,
Pakistan, Vietnam, and middle-eastern countries can now import computers
capable of 195,000 MTOPS (Millions Of Theoretical Operations Per
Second). The previous ceiling had been set at 85,000 MTOPS. The
president's goal in updating the US export control system is to protect
national security while allowing American technology companies to
compete in today's marketplace successfully. (PC Magazine, 8 Feb)
Encryption leaves DES behind. At 56-bits, the Data Encryption Standard
(DES) has long outlived its usefulness. Its planned replacement, the
new Advanced Encryption Standard (AES) sets out key lengths of 128, 192,
and 256 bits. The National Institute of Standards and Technology says a
machine that could crack DES in just one second would need 149 trillion
years to do the same to a 128-bit AES key. Even stronger stuff may be
on the way. Advances in quantum computing could render algorithmic
methods of encryption like AES obsolete. (Techweb, 6 Feb)
Airports invest in security-related technology. Airports worldwide are
beginning to experiment with various forms of "trusted-passenger"
technology to increase security and ease passenger flow through
checkpoints. In general, these "trusted" passengers are travelers whose
identity has been authenticated by their employers and through
frequent-flier programs. Measures being tested include
iris-recognition and wireless tracking of passengers and their baggage.
(IDG Net, 7 Feb)
Oracle's 'unbreakable' database springs a leak. Several security flaws
have been discovered in Oracle software, including one that could allow
a hacker to gain remote access to Oracle's database server without a
user ID or password. Oracle says it was first informed about the flaws
in December and has already made available patches and workarounds.
(InfoWorld, 6 Feb)
This archive was generated by hypermail 2b30 : Sun May 26 2002 - 11:38:53 PDT