[101550] in North American Network Operators' Group
Re: Q: What do ISPs really think about security issues?
daemon@ATHENA.MIT.EDU (Jared Mauch)
Thu Jan 10 09:55:45 2008
Date: Thu, 10 Jan 2008 09:54:51 -0500
From: Jared Mauch <jared@puck.nether.net>
To: Paul Ferguson <fergdawg@netzero.net>
Cc: nanog@nanog.org
In-Reply-To: <20080110.012005.10807.4@webmail24.vgs.untd.com>
Errors-To: owner-nanog@merit.edu
On Thu, Jan 10, 2008 at 09:20:05AM +0000, Paul Ferguson wrote:
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> As some of you may know, my primary job these days is tracking down
> Bad Guys (tm), identifying threats, etc.
>
> But enough of that.
>
> One of my primary concerns has been, unsuccessfully, engaging the
> networking community.
>
> Why is that?
>
> This "issue" is not imagined, nor is it a scare tactic -- it has,
> for lack of a better analogy, grown in proportions only proportional
> to the lack of engagement from ISPs.
>
> ISPs have really, really been absent from the discussion, for various
> reasons.
What discussions do you vaguely speak of? nsp-sec? nsp-sec BoF
@ NANOG? FIRST? it-scc.org? commscc.org? IT-ISAC? NCS? the ITU-D
Cybersecurity stuff? NSTAC? There's all sorts of forums that relate
to security that are defined by different criteria or self-selecting.
> Is this a topic that the NANOG community would like to discuss in
> a serious manner?
I think it'd discussed at NANOG and even has it's own BoF. Without
you providing more context of what you mean, it's hard to say.
> I'm just curious, because I'm considering submitting a "lightning
> talk" at the upcoming San Jose NANOG, just to gauge & present some
> of the major issues that we are seeing that could really use your
> assistance.
- Jared
--
Jared Mauch | pgp key available via finger from jared@puck.nether.net
clue++; | http://puck.nether.net/~jared/ My statements are only mine.
