1 / 6

Outrageous Opinion: Nothing We Do Can Improve Security

Outrageous Opinion: Nothing We Do Can Improve Security. Edward W. Felten Secure Internet Programming Lab Dept. of Computer Science Princeton University. The Lesson of Anti-Lock Brakes.

azizi
Download Presentation

Outrageous Opinion: Nothing We Do Can Improve Security

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Outrageous Opinion:Nothing We Do Can Improve Security Edward W. FeltenSecure Internet Programming LabDept. of Computer SciencePrinceton University

  2. The Lesson of Anti-Lock Brakes •Anti-lock brakes (ABS) were supposed tomake cars safer.•But people with ABS just drove faster, and closer together.•Result: no real change in accident rates•Users traded away safety for speed

  3. Nothing We Do Can Improve Security •Security mechanisms will always beconfigurable by users.•Users trade off security vs. function•Typical user approach:–Maximum functionality; “good enough” security•If we provide better security, users willtrade it away for functionality.•Ergo, security will not improve

  4. Objection:Security Isn’t “Good Enough” Yet •Not really an exception to the rule–“turned off” is a configuration choice•If we improve base-level security, peoplewill find riskier uses for systems•Invariant: most users operate at theragged edge of “secure enough”

  5. Developers Make Tradeoffs Too

  6. Objection:We’re Still Doing Good • •Even if users trade away security, they’retrading it for something they value•But: tradeoff makes it even harder tomeasure how we’re doing•Maybe we’re actually doing a good job ?!?

More Related