31 Jul 2012
Government has to start trusting the private sector (Former government deputy CIO slams UK cyber security). The trouble is that the government demands a level of assurance in security products that is sometimes just not achievable or takes an age and a fortune to deliver.
The whole government accreditation process also urgently needs a root and branch review as it is almost as big and brutish as the systems it is meant to be securing.
If the assurance and accreditation processes are not streamlined, the systems they support will continually lag behind the private sector and will be the weakest link – prime for exploitation.