Jul 28, 2015 10:07 AM

Homeland Security theater

*From SANS, who have been complaining about this even longer than I have.

–US Legislators Want to Increase DHS's Cyber Authority
(July 22 & 23, 2015)

US legislators have introduced a bill that would give the Department of
Homeland Security (DHS) a greater role in overseeing the cyber security
of federal agencies. The FISMA Reform Act would give DHS the authority
to conduct risk assessments on federal networks and use defensive
measures without the permission of an agency.

http://www.scmagazine.com/senators-introduce-bill-to-expand-dhs-oversight-of-federal-gov-domain/article/428227/
http://www.nextgov.com/cybersecurity/2015/07/senators-want-give-dhs-new-cybercom-powers-thwart-civilian-agency-hacks/118368/?oref=ng-HPtopstory
http://media.scmagazine.com/documents/137/272387111-fisma-reform-2015_34087.pdf

[Editor's Note (Pescatore): I don't think DHS has shown the competency,
capability or capacity on the operational side of cybersecurity to
fulfill such a role. There is a really, really big difference between
"conducting risk assessments" and implementing "defensive measures
without the permission of an agency." The biggest security shortcomings
at government agencies start with asset and configuration management and
vulnerability visibility/remediation - which is what the DHS CDM program
that began in 2013 was supposed to improve, but has barely gotten moving
yet.

(Murray): Recent studies (e.g.,
https://info.veracode.com/state-of-software-security-report-volume6.html)

and breaches have demonstrated that government remains the "soft
underbelly" of our "cyber defense." While government operates only ten
percent of the IT infrastructure, its inability to put its house in
order diminishes its ability to lead.

(Henry): The Comprehensive National Cybersecurity Initiative (CNCI) was
authorized and FUNDED in 2007, specifically to address the cybersecurity
needs of US government networks. Time and again I hear of some US
strategy or policy, like this one, as if it's a new initiative or idea.
The CNCI had a component to update FISMA and enable DHS to
oversee/protect all USG civilian networks: EIGHT YEARS AGO. Yet here
we sit, suffering from the results of the OPM breach, as if it was some
unforeseen catastrophe we could do nothing about. Unacceptable...]

Climate Change Made Hurricane Melissa 4 Times More Likely, Study Suggests

Unusually warm ocean temperatures fueled one of the worst hurricanes on record. New research finds climate change increased the storm’s likelihood.

No, ICE (Probably) Didn’t Buy Guided Missile Warheads

A federal contracting database lists an ICE payment for $61,218 with the payment code for “guided missile warheads and explosive components.” But it appears ICE simply entered the wrong code.

Nancy Mace Curses, Berates Confused Cops in Airport Meltdown: Police Report

At an airport in South Carolina on Thursday, US representative Nancy Mace called police officers “fucking incompetent” and berated them repeatedly, according to an incident report.

How to Hack a Poker Game

This week on Uncanny Valley, we break down how one of the most common card shufflers could be altered to cheat, and why that matters—even for those who don’t frequent the poker table.

Physicists Create a Thermometer for Measuring ‘Quantumness’

“Anomalous” heat flow, which at first appears to violate the second law of thermodynamics, gives physicists a way to detect quantum entanglement without destroying it.

Historians Don't Think a US Civil War Is Likely—but They're Still Nervous

“The fabric of what binds America together at this point is basically on its final thread,” one source tells WIRED.

The FTC Is Disappearing Blog Posts About AI Published During Lina Khan’s Tenure

The Federal Trade Commission removed several blog posts in recent months about open source and potential risks to consumers from the rapid spread of commercial AI tools.

In Orbit You Have to Slow Down to Speed Up

Driving a spacecraft around a planet isn’t anything like driving on a planet. A physicist explains orbital navigation.

Teachers Get Death Threats After MAGA Claims Their Halloween Costumes Mocked Charlie Kirk

A Turning Point USA official inaccurately claimed a high school's math department wore Halloween costumes that mocked Charlie Kirk. Those teachers are now facing a flood of online attacks and death threats.

The Government Shutdown Is a Ticking Cybersecurity Time Bomb

Many critical systems are still being maintained, and the cloud provides some security cover. But experts say that any lapses in protections like patching and monitoring could expose government systems.

How Genes Have Harnessed Physics to Grow Living Things

The same pulling force that causes “tears” in a glass of wine also shapes embryos. It’s another example of how genes exploit mechanical forces for growth and development.

Unpicking How to Measure the Complexity of Knots

Two mathematicians have proved that a straightforward question—how hard is it to untie a knot?—has a complicated answer.