In IT security we talk about the limited impact perimeter security has since a long time. The firewalls do not play the roles anymore they used to as the business got too complex and the term “perimeter” has a completely different notion today. So we try to find new ways to defend: We focus more on data, we increase threat intelligence etc.
This morning I read this article by Bruce Schneier: Reassessing Airport Security and to me the results pretty much resembles in real world what we see in IT. At the airport we defend the perimeter by scanning hand luggage etc. Not that this is completely useless, at least we might catch the stupid ones but it does not add a lot of security if TSA misses 90% of the carry-on weapons. But then there are countries that are really serious in security â€“ and they apply threat intelligence. So, try to make sure that the people on ground have the right information at hand and are well trained to spot abnormal behavior. Something I have not seen in a lot of airports across the Globe but something we are working on in IT since a while.
If you read Bruce’s article with the eyes of an IT guy, you see a lot of similarities between airport security and even classical network security. Might be the time that we could (should) start learning from each other. Unfortunately, the NIH (Not Invented Here) syndrome gets too often in our way.