I think there’s a pretty good argument for that being the case, since they’re exposed to the public but you can’t phish what someone doesn’t have access to and it’s really hard to accidentally reference something classified if you don’t know it. The government usually doesn’t shy away from a bit of overhead to have firm separation between classified and unclassified systems.
reply