I’ve been meaning to blog about the Jericho Forum for some time. This article finally did it. To disclose, in general I am very skeptical about the “pay per play” industry groups, especially those charging multiple thousands for a chance to voice your opinion on whatever security topic. So many of them failed miserably to achieve anything, but a chance for CXOs to expense trips to exotic locations.
Jericho seems full of ideas, but so far it is not clear ‘what is new’ and ‘how it will work’. Sure, firewalls are not the only defense most people need. Clearly, the nature and role of network perimeter is changing. Yes, defense in depth is a sound strategy (as have been known for quite some time).
This article summarizes it nicely: “large and architecturally elegant ideas die an ugly, lingering and expensive death. What works is step-wise refinement, the method of successive approximation and the brutal invisible hand of the marketplace.”
What I think will happen is that the evolution process will march on towards “de-peremetrization”, with or without Jericho on board. Thus, go book those trips now :-)