$100M is for the first phase, which I would think would be the initial deployment of intrusions sensors with out of band data feeds, and the building of a baseline traffic model. The real question is why do any critical control networks ever touch anything remotely connected to a public network? Laziness - that's why. Tomas L. Byrnes wrote:
Because no-one who could do it for less can afford to respond to government contracts, and make sure they comply with all the applicable laws and regulations, and keep the sort of records, and be prepared for the audits of said records, required.
As soon as you do business with the govt, the overhead goes through the roof.
-----Original Message----- From: Patrick Giagnocavo [mailto:patrick@zill.net] Sent: Wednesday, July 07, 2010 7:02 PM To: nanog@nanog.org Subject: Re: U.S. Plans Cyber Shield for Utilities, Companies
andrew.wallace wrote:
Article:
http://online.wsj.com/article/SB100014240527487045450045753529838504631 08.html Why does it cost $100 million to install and configure OpenBSD on a bunch of old systems?
--Patrick