As we consider the construction of national and global situational awareness systems to secure our manifestly complex infrastructure we run into a range of hurdles. Several of the more critical hurdles relate to the scope of the datasets needed. How do we get huge amounts of data from millions of facilities? How do we keep these vast pools of knowledge from becoming an Achilles’ Heel that attackers leverage to bring down everything at once?
Fortunately, some of the answers to these questions come from making things simpler rather than harder. From doing less, rather than doing more.
Crossposted from the ICS-ISAC Blog