The Three C’s of OPSEC
Counterintelligence, OPSEC and tradecraft for hackers.
Proper Planning Prevents Poor Performance
Compartmentation is a strategy, not an implementation. It is most effective when it is complete and total, with no contamination or violation. In fact, operational requirements for compartmentation of classified systems have a number of strict policies that must be followed to enforce isolation.
That’s about it. There is no way for data from one system to cross over to another system (see: no writable media). There are strong cues to limit user error (see: distance and visual differentiation). The worst mistake that can happen is a user attempts to access data on one system that isn’t accessible from there… Oops! They just try again from the correct system (no harm, no foul).
It really isn’t that hard a concept to grasp, even the [emphasis word] [people] at State manage it!
Physical compartmentation is a fairly annoying and strict discipline to maintain, but implemented properly it is effectively unbeatable at stopping data loss.
It seems with walk-ins that their level of eccentricity inversely correlates with the validity of the information they tell you. And the arrogance and ambition of the people they tell that information to inversely correlates with how well the info is used.