Our networks are like M&M’s — hard and protected on the outside, soft and chewy on the inside. Yet, the inside accounts for a lot more than what’s outside.

MAC and MLS did brick networks and break things because they suffered from “special conditions” syndrome. When you add new objects to the host kernel, features are lmited to that host, definitely a problem in a mixed platform environment.

We have found a way to avoid that and in fact, provide MLS that scales, even in a MS environment. The concepts of MAC/MLS were good, their implementation in modern networks were not.

The business world now needs confidentiality more than ever due to privacy concerns etc.. However, 80% of security spending is on edge security to prevent damages that amount to about 20% of the damage to the enterprise.

Also makes ya wish we could see the strategies used by the groups who need it most: NSA/CIA types. What are their policies in their physical buildings and digital systems? I’d love to see that!

I think most companies will be focused on protecting data from outsiders and we’ll never truly address overzealous insider data access very well at all.