Re: CRIME 80/20 Rule

From: Craig.Schiller@private
Date: Tue Aug 19 2003 - 17:06:08 PDT

Next message: Quinby, Kris (MED): "RE: CRIME 80/20 Rule"

Previous message: Daggett, Steve: "CRIME 80/20 Rule"
Maybe in reply to: Daggett, Steve: "CRIME 80/20 Rule"
Next in thread: Quinby, Kris (MED): "RE: CRIME 80/20 Rule"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

It's not a real statistic.  It's an application of the 80/20 rule to make
conventional wisdom seem like it is quantified.

Craig A Schiller, CISSP
Global Information Security Officer
RadiSys Corporation
craig.schiller@private
503.615.1646


This electronic message contains information which may be confidential,
privileged or otherwise protected from disclosure.  The information is
intended to be used solely by the named recipient(s).  If you are not a
named recipient, any review, disclosure, copying, distribution or use
of this transmission or its contents is prohibited.  If you have received
this transmission in error, please notify me immediately.


|---------+---------------------------->
|         |           "Daggett, Steve" |
|         |           <Steve.Daggett@Fi|
|         |           serv.com>        |
|         |           Sent by:         |
|         |           owner-crime@private|
|         |           x.edu            |
|         |                            |
|         |                            |
|         |            08/19/2003 10:25|
|         |           AM               |
|         |                            |
|---------+---------------------------->
  >-------------------------------------------------------------------------------------------------------------------------------|
  |                                                                                                                               |
  |       To:       "Crime (E-mail)" <crime@private>                                                                           |
  |       cc:                                                                                                                     |
  |       Subject:  CRIME 80/20 Rule                                                                                              |
  >-------------------------------------------------------------------------------------------------------------------------------|





  There's an often quoted statistic that 20% of network intrusions come
from
the outside and 80% intrusions are inside jobs.

  I've heard it, I've read it, I've even said it...  Does anyone know were
the statistic comes from?  I've been looking around the web and can't seem
to find an authoritative source for the statistic.

Steve Daggett
Senior Network Design Engineer
Fiserv EFT

This e-mail is confidential and may well be legally privileged.   If you
have received it in error, you are on notice of its status.   Please notify
us immediately by reply e-mail and then delete this message from your
system.   Please do not copy it or use it for any purposes, or disclose its
contents to any other person.   To do so could violate state and Federal
privacy laws.
Thank you for your cooperation.   Please contact me if you need assistance.

Next message: Quinby, Kris (MED): "RE: CRIME 80/20 Rule"
Previous message: Daggett, Steve: "CRIME 80/20 Rule"
Maybe in reply to: Daggett, Steve: "CRIME 80/20 Rule"
Next in thread: Quinby, Kris (MED): "RE: CRIME 80/20 Rule"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Aug 19 2003 - 17:41:39 PDT