Is there a larger concern?
Reading between the lines of this article there appears to be a larger concern which is not directly called out. Because we continue to focus on the traditional threat-based control approaches, such as encryption to protect against eavesdropping or certificates for authentication, are we inadvertently creating "blind" spots that increase opportunities for these attacks?
This is not to say that all existing security countermeasures are failing us but that perhaps we might have a better chance of surviving this modern threat landscape by re-evaluating the use of traditional threat-based approaches and focus on reducing our attack surfaces by following a more risk-based approach.
User Rank: Apprentice
3/28/2014 | 5:13:01 PM
NTP can be easly blocked inside the network.
UDP may not be blocked in efficient ways if is needed.