Comments on: About Security Trade-offs http://www.dataman.ro/2007/08/29/about-security-trade-offs/ Computer Adventures. Mon, 06 Sep 2010 18:44:14 +0000 http://wordpress.org/?v=2.2 By: Ryan http://www.dataman.ro/2007/08/29/about-security-trade-offs/#comment-394 Ryan Fri, 05 Oct 2007 16:43:35 +0000 http://www.dataman.ro/2007/08/29/about-security-trade-offs/#comment-394 How easy would it be to secure the key to the metal strip so that shysters like you (and me, most likely) can't just remove the key? Pretty easy I think. The explanation to that error is probably more along the lines of 'laziness'. They were hoping that most people would either not think to remove the key or wouldn't go through the effort. At first I wanted to say that the other issue (the metal strip only cover one door) was poor design, and it is, but once again I think laziness has to be the primary root cause here. Whoever implemented that security feature surely knew that the user could easily utilize the 'non-secure' door, and yet they still left it vulnerable. I don't see the extra cost being a realistic explanation here. LAZY! Interesting real-world metaphor for computer security. Thanks. :) How easy would it be to secure the key to the metal strip so that shysters like you (and me, most likely) can’t just remove the key? Pretty easy I think. The explanation to that error is probably more along the lines of ‘laziness’. They were hoping that most people would either not think to remove the key or wouldn’t go through the effort.

At first I wanted to say that the other issue (the metal strip only cover one door) was poor design, and it is, but once again I think laziness has to be the primary root cause here. Whoever implemented that security feature surely knew that the user could easily utilize the ‘non-secure’ door, and yet they still left it vulnerable. I don’t see the extra cost being a realistic explanation here. LAZY!

Interesting real-world metaphor for computer security. Thanks. :)

]]>