|
|
|
|
|
|
by martinced
4928 days ago
|
|
|
You need two networks: one internal without any Internet connection and computers with no WiFi and no USB. Make people work on their workstation, connected to the internal network and let them use their other computer / laptop to search the Web. I can name at least one very important chip-designing company that is worth $$$ bn that used to work this way (don't know where they're at now). |
|
|
The reason red/black networks (can potentially) work in military environments is that there is a (somewhat) uniform notion of classification in the military; in the business world, there is no such thing. What is needed is something more distributed, like a system that automatically encrypts documents so that uploading those documents to some Internet service is not so hazardous. Give employees smartcards that are easily carried around and easy to use, perhaps combining those smartcards with a thumb drive that contains whatever software they need to decrypt their documents on any computer. The security will not be perfect, but this is not a situation that requires perfection, only improvement.