Allan Paller on FISMA

The experts also agreed that the Federal Information Security Management Act is inadequate and needs to be updated or radically changed. Paller [director of research at the SANS Institute] had some of the harshest criticism.

“FISMA is not just not working for us, it is working against us,” he said. “It is antagonistic to security.”

via Senators look for proper model for managing cybersecurity — Government Computer News.