I've been thinking a lot about how to secure a network against
intrusion. I'd like to start a discussion about better ways to
protect the availability, privacy and integrity of computer networks.
One of the things that I've given a lot of thought about is the fact
that on a network, you can assume that at least one computer will be
compromised at some time.
In the typical computer network, if one computer falls they'll all fall
in pretty short order. Researchers have show me logs of attacks where
the time between initial penetration to total network ownership was