Re: Broken security model
I agree. The irony is that the UK NCC position on network security in the early 1990s was that any network where you can't see all of the endpoints all of the time should be regarded as Untrusted.
There is little new under the sun in our world, we just have to keep re-learning the same lessons, albeit in a different guise.