[Cryptography] Always a weakest link
Jerry Leichter
leichter at lrw.com
Tue Oct 8 14:02:43 EDT 2013
The article is about security in the large, not cryptography specifically, but http://www.eweek.com/security/enterprises-apply-wrong-policies-when-blocking-cloud-sites-says-study.html points out that many companies think that they are increasing their security by blocking access to sites they consider risky - only to have their users migrate to less well known sites doing the same thing - and those less well known sites are often considerably riskier.
My favorite quote: "One customer found a user who sent out a million tweets in a day, but in reality, its compromised systems were exporting data 140 characters at a time via the tweets."
-- Jerry
More information about the cryptography
mailing list