Michele Chubirka


Upcoming Events

Where the Cloud Touches Down: Simplifying Data Center Infrastructure Management

Thursday, July 25, 2013
10:00 AM PT/1:00 PM ET

In most data centers, DCIM rests on a shaky foundation of manual record keeping and scattered documentation. OpManager replaces data center documentation with a single repository for data, QRCodes for asset tracking, accurate 3D mapping of asset locations, and a configuration management database (CMDB). In this webcast, sponsored by ManageEngine, you will see how a real-world datacenter mapping stored in racktables gets imported into OpManager, which then provides a 3D visualization of where assets actually are. You'll also see how the QR Code generator helps you make the link between real assets and the monitoring world, and how the layered CMDB provides a single point of view for all your configuration data.

Register Now!

A Network Computing Webinar:
SDN First Steps

Thursday, August 8, 2013
11:00 AM PT / 2:00 PM ET

This webinar will help attendees understand the overall concept of SDN and its benefits, describe the different conceptual approaches to SDN, and examine the various technologies, both proprietary and open source, that are emerging. It will also help users decide whether SDN makes sense in their environment, and outline the first steps IT can take for testing SDN technologies.

Register Now!

More Events »

Subscribe to Newsletter

  • Keep up with all of the latest news and analysis on the fast-moving IT industry with Network Computing newsletters.
Sign Up

See more from this blogger

Email Encryption And The Goldilocks Principle

The other day I decided to add two-factor authentication to my online password safe. The authentication device, which is powered by a USB port, worked fine the first few days. Then one morning, it didn’t. No matter what USB port I plugged it into, it wouldn’t power up and generate my one-time password. About the time I was about to throw the key and my laptop out the window, I remembered reading about occasional compatibility issues between USB 2 and 3 devices. So I checked online for patches for the laptop and the key, but didn’t find anything. I finally took the computer professionals' path of last resort: a reboot. Voila! The key worked again. I thought to myself, “Why does this still have to be so difficult?”

Lamenting how similar problems often keep security measures from being fully successful, I conceived the Goldilocks Principle of Information Security. The effectiveness of a security control is judged by the following guideline: Is it too hard for the user, too soft for the security team, or just right for both?

More Insights

Webcasts

More >>

White Papers

More >>

Reports

More >>

This principle is the standard by which all security controls are ultimately measured, and failing to appreciate it usually leads to our downfall when deploying a solution.

One glaring example is email encryption. We can send a man to the moon and cure diseases that have plagued humans for generations, but we still have methods that are either too hard (such as asymmetric encryption with public/private key pairs) or too soft (such as identity-based encryption, or IBE).

I recently had to implement a secure email system and spent some time researching both of these options, but neither left me with the feeling of “just right.”

[Secure communication has become a hot topic with the revelations of the NSA's surveillance programs. Read how most SSL traffic doesn't use an extra level of protection in, "Many SSL Connections Missing Added Protection, Netcraft Says."]

Email encryption using asymmetric keys has been around almost since the beginning of electronic mail and is generally thought to be the more secure solution. It can be used with public key infrastructure (PKI) or the decentralized web of trust model.

Choose your poison: You can deal with certificate authorities, which haven’t fared well during the last few years (rest in peace, DigiNotar), or the chaos of self-managing public keys and the problems that arise from exchange, revocation, expiration and non-repudiation.

Then there’s the quandary of where and how to store that pesky private key--the one you’re supposed to keep to yourself, with most people either hiding it in such a safe place that they can’t find it when needed or making it easily available for almost anyone to locate.

Then there’s the interpretive dance you have to perform when demonstrating how the process works: “No, you’re supposed to give me your PUBLIC key, not the private one. Then you ask me for mine if you want to have a secure communication.” I’ve known CISSPs who get this part wrong.

IBE, with its trusted, centrally managed private key generator (PKG), should fix this, right? It sounds ideal, with a model initially proposed by Adi Shamir, co-inventor of the RSA algorithm. In implementation, the public key is the user’s email address and the private keys are created by the PKG, using a master private key. The system can be in the cloud or via an enterprise on-premise product.

Sounds great, but that model can also be part of the problem. First, I have to trust that the PKG securely stores and protects its master private key and won’t reveal it to third parties. If that system is compromised, then so are my messages. What about the secure channel for transmitting the private key to the user? That’s usually done with SSL and passwords. Great, we're back to square one, because we all know the problems inherent with those methods.

This type of quandary isn’t unique to email encryption, and security professionals are constantly searching for “just right” solutions. But instead of feeling like Goldilocks, most end up in an infosec existential crisis. We often have more in common with Sisyphus: we push a boulder up a hill only to have it roll back down to crush us under poor products, just as we think we’re about to make some progress.


Related Reading


Network Computing encourages readers to engage in spirited, healthy debate, including taking us to task. However, Network Computing moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. Network Computing further reserves the right to disable the profile of any commenter participating in said activities.

 
Disqus Tips To upload an avatar photo, first complete your Disqus profile. | Please read our commenting policy.
 
Vendor Comparisons
Network Computing’s Vendor Comparisons provide extensive details on products and services, including downloadable feature matrices. Our categories include:

Research and Reports

Network Computing: April 2013



TechWeb Careers