Usually they say "Best defense is offense".
But as I was thinking how can I defend my digital privacy, I came to conclusion that the best thing I can do is "break routine".
I mean that I have to be creative and think of some slight random change in my behavior so that my casual patterns cannot be used against me.
Then I thought, is this idea useful for organizations? small ones? big ones?
I think that eventually, you cannot have a "written routine for breaking routine".
You have to, say, randomly pick a person, then tell her to think of some change for this week or day, and guide everyone to obey her instruction.
(and hope she's not malicious or bitter employee...)
Maybe you can define a set of areas and randomly pick one, and in this area pick a random parameter.
Say that today "NAT" was chosen, and thus a new IP mask for some domain was randomly picked. I guess its not bullet-proof, but it can make life pretty hard for big and patient attackers, like organizations.
I know this idea isn't really original. Every good soldier knows that breaking routine is basic defense method against guerrilla and any enemy in fact.
Still, it struck me to be the only general technique available besides the regular missile-race.
Good luck with randomization, everyone out there!
No comments:
Post a Comment