Todd Walton wrote:
On Sun, Jun 15, 2008 at 4:33 AM, James G. Sack wrote that Bruce Schneier wrote:
..solution is not to sell security directly, but to include it as part
of a more general product or service. Your car comes with safety and
security features built in; they're not sold separately. Same with your
house. And it should be the same with computers and networks. Vendors
need to build security into the products and services that customers
actually want. CIOs should include security as an integral part of
everything they budget for. Security shouldn't be a separate policy for
employees to follow but part of overall IT policy.
But that only works so far as security can be canned up and put into a
product. There's an element of security that requires someone to stop
and think about it.
-todd
In keeping with the analogy, cars are sold with keys, and sometimes
alarms. For the Club, you have to buy that separately, and apply it
each time. But the Club does make car theft slightly harder. A club
for the brake or the clutch (that does not attach to the steering wheel)
is far more secure, but it's also much more inconvenient to use.
(Now only 103 unread messages to catch me up to 3 days ago. And then
however many are awaiting me since then.)
--
Ralph
--------------------
I hope I never meet a man so narrow minded as to spell a word in only
one way.
--Thomas Jefferson
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
