Since quite some time as Chief Security Advisor, I am working to support Law Enforcement. We are supplying training, giving technical support as needed and are staying in close contact as well as soon as we decide to file a criminal complaint. This happens especially if we are phished (we being Hotmail) or some other criminal activity happen towards Microsoft or our customers.
This lead me to the point where I started to think whether the work I am doing in this area is actually targeted enough (meaning, do we actually make the Internet a safer place) or is it just "operational hectic" – Am I just helping the person shouting the loudest.
Let's take a moment and think about it:
There is an old model of 10:80:10 (no, not the 80:20 rule J):
I leave it now up to you to decide to which group you belong to but based on statistics I would assume that most of us are in the middle tier – depending on the stakes that are at risk.
Now, I said that the middle group would weight value vs. risk, s let's look at this a little bit closer. I recently discovered a formula on this subject:
Mb + Pb > Ocp + OcmPaPc
This formula was published 1995 by Clark and Davies and in my opinion did not lose its significance in the time of the Internet.
Thinking about this, it probably helps us to understand how we can work with the middle 80% to keep them away from crime and additionally try to make it harder to the ultimate 10% to commit crime. This leads now back to my question above: Am I doing the right thing? Or better, what can I actually do efficiently? To answer these questions, let's have a look at the different parameters in the equation:
This is the first time ever I have a call to action for you:
Whenever you are attacked, involve Law Enforcement and make sure that they start an investigation. This is the only way to make it riskier for the criminals to commit crime. If we just fight the attackers and closer vulnerabilities – what is the risk for the middle 80% in relation to the value? We have to change this equation and we have to do it together.
As my conclusion, I will continue my work with Law Enforcement to support their fight against the criminals I hope you join in
PingBack from http://www.ditii.com/2007/08/26/microsoft-security-blogger-whenever-you-are-attacked-involve-law-enforcement/
There are different ways how to deal with Spam. One is, to eat it (yes, I know it is an old joke but
Remember Economy of Cybercrime ? I hope so! There I made the statement that Cybercrime has to pay off.
You remember my post on The Economy of Cyber-Crime ? One of my claims was, that you need to work with