- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
Mich Kabay takes a high-level view of security issues and provides resources to help safeguard your corporate and personal security.
Security experts have known for decades that fiber-optic cabling can be tapped for interception of communications. But until recently, such taps have been viewed as largely impractical.
The equipment was expensive and the number of fibers in the cables made it difficult to narrow down captured transmissions to a particular connection. In addition, physical interruption of the fibers could be detected using time-domain reflectometry, making such taps hard to conceal. It was also known that teasing apart the fibers and bending them in a tight curvature would allow escape of a small portion of the signal without revealing the data interception. Nonetheless, fiber-optic cabling was viewed as largely secure against wiretaps.
I recently received an interesting paper on recent developments in optical fiber taps from Seth Page, CEO of Oyster Optics, a provider of optical security, monitoring and intrusion-detection products. He has very kindly permitted me to quote from his paper.
Page writes that the situation has changed:
"For both public and private networks, optical taps and analytic devices are required and inexpensive maintenance equipment in common use worldwide today. Various types of optical taps, however, both off-the-shelf and customized, are also used for corporate espionage, government espionage, network disruption and other potential terrorist-type activities. Used nefariously, optical taps allow access to all voice and data communications transiting a fiber link. Modern commercial network equipment and network configurations cannot detect most types of optical taps…
"Optical taps that are used illicitly to garner information are most often placed in the access or local loop for a number of reasons. Firstly, 100% of all information entering and exiting a building, campus or local area can be obtained by tapping between the customer premise and the first network switching node or central office, from where it might then otherwise get switched along divergent routes. Secondly, network configurations, bandwidth and speeds are more manageable towards the edge of the network, implying less expensive equipment and a simpler penetration. Thirdly, opportunities for direct access to fiber are easier to locate, simpler to identify and more plentiful in the public and private spaces that provide such fiber-routes. Such spaces include: telco closets; cages; risers; basements; conduits; car garages; drop-down tile-ceilings; and pathways in subways, tunnels and across bridges, to name few.
M. E. Kabay, PhD, CISSP-ISSMP, is Program Director of the Master of Science in Information Assurance program at Norwich University.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comments (1)
RE: Tapping fiber optics gets easierBy Ray Greco on August 14, 2007, 9:57 amI am amazed how unconerned companies are with regards to fiber infrastructure! Are they simply taking the "it won't happen to me" addittude?
Reply | Read entire comment
View all comments