Luke S Crawford <l...@prgmr.com> chose to write:
> Matt Simmons <standalone.sysad...@gmail.com> writes:
>
> > I've thought about getting involved with Infraguard
> > (http://www.infragard.net/) but I've not yet mentally ironed out the
> > responsibilities I would be subjecting myself and my employer to.
>
> I read about that and my (rather poorly informed) impression was
> that it was at least partly about easing warrantless information gathering;
> something I think we need to be /very/ careful about.
>
> Now, like I said, my opinion is poorly informed and my be completely wrong.
> If it really is just about providing tech. help to less-technical
> law enforcement, that'd be great;
"poorly informed" = speculation
My first hand experience:
It's not about "us" providing tech help to less-technical law enforcement
("them")
It's about collaboration and info sharing in a less than public forum, where
people can be a little more candid.
Data point:
I participated in a realistic, detailed, and professionally crafted Infragard
sponsored cyber attack table top exercise last year.
The FBI folks running the exercise were very savvy; they were out to help raise
InfoSec awareness in private organizations that may be less savvy. If anything,
they were restrained in the amount of specific help they were able to offer (my
$0.02: because of a lawsuit happy society) and lines they can cross. They even
put up with me at one point telling them that they were not being as helpful
as
*I* wanted them to be due to their self imposed restraints.
If they are chasing white collar criminals for months and my evidence is
crucial, I don't want to trample it because of business expediency pressures.
This was one of many intriguing competing forces that was exposed by our
tabletop exercise.
Membership costs nothing. If it turns out it's not value added, you simply
leave.
_______________________________________________
Discuss mailing list
Discuss@lists.lopsa.org
https://lists.lopsa.org/cgi-bin/mailman/listinfo/discuss
This list provided by the League of Professional System Administrators
http://lopsa.org/
