As security engineers, our role is to (a) reduce the number of
entities we trust; (b) reduce the extent to which we trust the
remaining trusted entities; and (c) determine the trustworthiness of
trusted entities.
A system with voting like Convergence (depending on configuration) has
the nice pro
On Fri, Jan 27, 2012 at 1:26 PM, Daniel Kahn Gillmor
wrote:
On 01/27/2012 04:02 PM, Kyle Hamilton wrote:
Why is everything so single-point-of-failure in the Security working
area? Does it really have to be?
You seem to be suggesting that we should be considering redundant,
corroborative c
On Fri, Jan 27, 2012 at 8:10 PM, Phillip Hallam-Baker wrote:
I think we should focus on identifying problems at this stage.
I agree.
1) We need to figure out what we're really trying to do. I think it's an
attempt to improve the detection rate of impersonation fraud, in an attempt to
r
