WikiLeaks Lessons: Stronger Encryption and Secured Systems

Sunday, December 12, 2010

Contributed By:
Gurudatt Shenoy

It is not yet clear, and maybe never will be, as to what went wrong with respect to information security resulting in WikiLeaks episode that has taken everyone by storm.

Was it a system failure or was it a security solution that failed the test!?!

From what I have read and know, it seems like a system failure, as there was no secured system worth its salt in place to prevent mass proliferation of important information, if not highly classified data.

Seems like someone was able to download the entire database and copy it to a portable drive and get it shipped outside the system, or upload it via the numerous online websites out there.

Or it could be a deliberate leak by informed authorities?

The most unlikely possibility is that someone hacked into the system and stole information using an online back-door.

Yet, what fascinates me is the sheer volume of the information (including the Afghan and Iraq tapes) as well as the quality of information.

How could this information be classified and yet not be encrypted, using a "for your eyes only" kind of secured solution so that only the sender and recipient could reveal and read the information. Even the Romans had a better solution and system to prevent such leaks.

Add to the fact that 3 million people already have this information.

What alarms me is not what has been leaked by WikiLeaks, but what could be out there that is even more dangerous, a potential for disaster waiting to happen, or something important that could fall in the hands of sinister people.

The Chinese are never tired of trying to get their hands on everything that can be hacked and accessed.

And if the technologically most powerful country is so vulnerable, what about the rest of the world, such as those who also possess nuclear weapons?

Wars have always been won due to the superior information gathering capacity of the adversary. Today the adversary is terrorism and neo-nationalist fervor.

When will the world adopt more secured information systems, or in other words when will most of us be able to transmit information securely?

Make it For Your Eyes only......

Share This! |

Views:	2564
Categories:	General
Tags:	Encryption breaches Databases Data Loss Prevention WikiLeaks

Post Rating I Like this!

Comments:

Lee Mangold Data-in-transit is encrypted on SIPR. The problem is that someone was given too much access... While I agree that an alarm *could* have been tripped at the massive download, it probably wouldn't have even been necessary if the CD writer was disabled (as it should have been).

1292244987

You Must Register or Login to Comment

The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.

Most Liked

Latest Member Comments

"Android is always preferable over any OS, very much flexible. Waiting for it's desktop popularity... http://www.doctorbrakes.com"

Steps Toward Weaponizing the Android Platfor... Freid Jerome on 05-17-2013

"http://www.lovewigs88.com"

Is BYOD a Nightmare for IT Security or a Dre... Sasa Miss on 05-16-2013

"http://www.wighair.co.uk/"

FTC Seeks Comment on Proposed Revisions to C... Sasa Miss on 05-16-2013

"http://www.lovewigs88.com"

How to Protect Your Privacy from Facebook's ... Sasa Miss on 05-16-2013