Those of us in the private sector spend mega-dollars and hours to implement FISMA if we want government grants. Why don't they have to follow their own regs? FISMA was written by NIST as mandatory practices for ALL government agencies.
It's also a joke to hear Target talk about chips in credit cards as a security cure when employees use default passwords. Ask RSA if the biggest problems are hackers or users.
Techdirt has not posted any stories submitted by fdavison.