I think an obvious follow up question that no one has addressed is, If anyone can find it, why didn't the US government find it? Gregg said, "Whether people inside the US knew about it is a separate issue."
"We do security assessments and pen tests," Gregg said, "and any time we have someone going to China, Russia, Eastern Europe, we give quite a bit of information about being careful at what they do. Only use encrypted email and on email servers that meet a certain standard. Her server didn't meet those sorts of requirements."
Again, I go back to the question, Why? How has any of this been convenient or beneficial for Clinton? Gregg said, "To some degree it's somewhat scary because either she didn't know or doesn't understand, or she did know and thought that her access and usability overrode concerns for security."
What many in the intelligence community fear is that she doesn't understand. "This is really an issue of most importance. The number of companies and government entities from power to gas. If there is some other type of war or outbreak, those systems are going to be targeted," Gregg said.
Looking forward, Aitel said, "There is about an 80% chance that she is going to be our next President. How is this going to impact her presidency? Is she going to have difficulty talking about cyber security?"
Several pressing issues will demand that the President be able to rationally and intelligently create policies that will impact national security. Aitel said one of the most important of those issues is negotiating privacy shields with Europeans.
"That's intense policy work. There is also handling the "Snowden" effect and other matters that happened on her watch, like Wiki Leaks. The Apple vs IBM encryption debate. Technology on encryption law enforcement. You can't have it both ways, and if you don't understand the policy, you think you can have it both ways," Aitel said.
The one thing that is clear in the aftermath of Comey's indictment of Secretary Clinton is that he set a precedent: moving forward, we are leaving no room for carelessness in cyber security.
Sign up for Computerworld eNewsletters.