nanog mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Scaled Back Cybersecuruty

From: "Merlin Communications" <merlin_comm () att net>
Date: Tue, 14 Jan 2003 20:46:04 -0800



On 14 Jan 2003, Vijay Gill wrote:


I can see how purchasing power may motivate a vendor (and
maybe lots of individual vendors) to fix their own problems,
develop better products, or be more responsive.


The problem is that the "government" does not have large purchasing power
compared to the commercial side of the house.  The government doesn't buy in
bulk, doesn't buy often and usually selects the lowest cost.  Vendors design
equipment/services for the customers who will buy it.  The majority of those
customers are revenue driven commercial entities that have always questioned
the need to pay for any additional security.  In the past, "security" has
never been an easy sell to anyone when a cost was attached because it was
never perceived to have the potential to bring in additional revenue and
because those who were aware of security breaches of substance would not
acknowledge them (this goes for government and industry).  And sadly there
are some vendors who are so big or have such a large share of their market
space, that they just do what they want regardless.

John S. Maddaus
Previous By Date Next
Previous By Thread Next

Current thread: