I like keeping up with Donald Trump’s cyber advice!

I like keeping up with Donald Trump’s cyber advice!

I like keeping up with Donald Trumps cyber advice

To be honest, it’s not that difficult. Everything he says seems to hit the media instantaneously, regardless of how pointless the comment is. One of the things he said recently made me think there was a blog article in it, so here it goes.

“If you have something really important, write it out and have it delivered by courier” he said, according to reports from Associated Press. The Romans did this Donald, and they were clever enough to convert the information into cipher text first. I could understand where he was coming from with the comment. You cannot infect people, flesh and blood, with malware that will yield confidential information (yet), therefore the endpoint is somewhat protected regarding this. However, you have to ask the question regarding if couriers can be wholly trusted or physically protected enough to ensure that information cannot be compromised. If they don’t have a price to give up the data, they may at the very least spend some time in a hospital for their troubles when they refuse to give it up. Data needs to be risk assessed. Will I send everything by courier? No. That would be an extremely inefficient way of moving information from point A to B, especially over long distances. Would you send top-secret information via courier, not unless there is some heavy security and separation of trust around it. And that is my point, there needs to be additional layers of security. There needs to be authentication at either end, that is not a shared secret (password/key), but has been created to ensure secrets stay independently secret to the individuals involved. There needs to be a cryptography mechanism, to ensure that anyone who handles the information cannot interpret it. And there also needs to be an element of security in the deliverance of data, to ensure that data does actually get there.

So Donald, loving the fact you are helping the cyber industry with your comments, but be sure to do what the Romans do…. or did.

Laurence is part of the MiSEC team, bringing 10 years worth of security and networking knowledge. He is always striving to learn new skills and be on the edge of the latests developments in the industry. And most importantly, he is more than willing to share thoughts over a beer...but to be clear, not willing to share his beer.


Leave a reply

Your email address will not be published. Required fields are marked *