|
Actually I don't think that this is exactly what most people are thinking, from what I read anyways. From what is posted it sounds like they want ISP's to setup "monitoring". By that I mean take a port where all the data aggregates and mirror it. This simply means that they will be able to "sniff" the traffic that is flowing through the network(s). Note (when a port is mirrored it is only allowed to send data, not recieve it). This means that they could only hear what was on the wire and not talk over it, although I am not sure how they would handel VPN with IPSEC, SSH, SSL, and other encrypted protocols. From a network engineers precpective this is something that would be moderatly easy to implement but as a security engineering would be completely unacceptable because even though servers and resources couldn't be touched it would open up an opertunity for "outsiders" to see what packets and frames are flying across ones network.
Just my 2 cents.
|
14-03-2004, 17:03
Hybrid Mode
