Steve Lamb's Blog

Security Matters

Blogs

Great Comment from Bruce Schneier "we tend to worry about the spectacular and rare rather than common events such as spose abuse and automotive accidents"

  • Comments 4
  • Likes

Bruce Schneier gave a interesting podcast promoting his new book Beyond Fear. Lots of common sense and yet highly relavent information and some great quotes including the following:

"More people are killed per year by pigs than by Sharks" - based on US Government statistics.

"We tend to worry about the spectacular and rare - rather than common events such as spose abuse, automotive accidents"

"People tend to worry about the wrong things"

Bruce's Blog includes some interesting discussions.

 

Comments
  • Indeed.

  • In my previous company I worked as a security consultant and saw many frightening security scenarios. Bruce's comments reminded me of such scenarios where clients asked me to implement highly complex technical solutions such as PKI EVEN THOUGH their remote access was completely wide open or their user's security awareness was poor.

    This all comes back to actually using a realistic security policy to guide security strategy based on a solid risk assessment.

  • I remember this statistic from driver's ed growing up. Really puts things into perspective. Which one should we have been protesting. (And the #s continue to rise...)

    "The Vietnam War claimed 47,355 American lives in combat over 17 years, from 1957 to 1973. In addition, over 150,000 Americans were injured in that unpopular and unsuccessful war. Each year in the United States as many lives are lost in motor vehicle accidents as during the entire Vietnam War. For decades, 40,000 to 50,000 people have been killed each year in U.S. traffic accidents.[1]

    1. U.S. Bureau of the Census, Statistical Abstract of the United States: 1990 (ll0th edition) (Washington, D.C.: U.S. Government Printing Office, 1991), pp. 345, 346, 612. "

  • Steve my wifes web browser was recently highjacked by a program that downloaded itself seems thatere must be some law agaist that type of thing wouldn't that be considered a serious security threat and doesn't anybody in the web community have anything going on to stop this sort of thing from happening.. Ps don't the feds care about this also they might be at risk from this sort of thing