DOD’s Current InfoSec Strategy Is ‘Patch and Pray’

As said here multiple times, the “patch and pray” method is the vulnerability, not the vulnerabilities themselves. Nothing will change until the IT culture changes. Businesses and governmental agencies do not want to fork out extra money to strengthen defenses until something already happens. They’re reactive, not proactive. In the end, Americans end up paying the price for years to come.

 

But DARPA Director Arati Prabhakar says that her agency is working to make computing ‘mathematically, provably secure.’

The Pentagon’s emerging technology agency faces almost continuous cyber threats. And according to Director Arati Prabhakar, its strategy so far has been to “patch and pray.” Continue reading