A new idea or a new model?
What we need is moderate security and what we should do is moderate protection. We don’t need to put lots of money on something we actually don’t want. We should learn to accept the risk which we always have to confront!
Use the power of deterrent! Implement the (PDR)2 model, the macro level is Policy-Deterrent- Recovery(PDR) and the micro level is Protection-Detection-Response . we can do lots of things with a little budget, that is all we except.
P.S.:Any comments would be appricated, if you got any new ideas ,please let us me know!
WOW, great topic, i’m always thinking appropriate is the best,
Moderate security for what? for you business.
How to measure moderate or not? 2 measures basically, one is about coverage, another is about depth.
I advise to follow following approach,
1. Think about your business, priotize them into different levels
2. Exclude the least important business from protection scope,
3. Consider the depth of security measures of the left medium-to-highly important business, think about following questions,
# What’s the expected protection level, on network, system or even application?
# Are there any overlap when choosing security protection measures, for example, deploy network IDS and host IDS together
# On the other side, what’s the tollerance for your business?
4. Finalize your solution, have a communication with your manager and business user as well, get their support,
适度防护 加入威慑的概念
think systematize, action specific.