[Cryptography] Always a weakest link

Jerry Leichter leichter at lrw.com
Tue Oct 8 14:02:43 EDT 2013


The article is about security in the large, not cryptography specifically, but http://www.eweek.com/security/enterprises-apply-wrong-policies-when-blocking-cloud-sites-says-study.html points out that many companies think that they are increasing their security by blocking access to sites they consider risky - only to have their users migrate to less well known sites doing the same thing - and those less well known sites are often considerably riskier.

My favorite quote:  "One customer found a user who sent out a million tweets in a day, but in reality, its compromised systems were exporting data 140 characters at a time via the tweets."

                                                        -- Jerry



More information about the cryptography mailing list