Comment on Forcing Workers Back to the Office Might Not Have Been a Good Idea After All
mycroft@lemmy.world 1 year agoEven the government has capitulated to the idea that devices themselves should be secure:
csrc.nist.gov/pubs/sp/800/207/final
If you can deal in government data on your laptop at a starbucks, we most certainly can work at home behind locked doors in our own offices with anything equivalent.
couragethebravedog@lemmy.world 1 year ago
See my other comment. It’s also about physical security, protecting access to your work laptop and protecting IP. That VPN is completely useless if someone can get into your home and access your device. It’s way easier to get into someone’s home than into a properly secured office.
mycroft@lemmy.world 1 year ago
No. Even that is incorrect.
You are 4 nodes deeper in OSS intel required, (isemployee->hasaccess?->homeaddress->break in)
I also know there are only 2 people with keys to my home, the hours of operation are limited, and there are no 3rd parties with unrestricted physical access (maintenance, physical security, janitorial services.)
The only difference in person provides is a record of access, cameras and access control systems etc.
My home also has this record of access and if requested can be provided. Most folks have egress cameras nowadays too.