Bruce Schneier: More on the Broad View of Security
Bruce Schneier's evolution of interests is well documented, moving from encryption to broader and broader perspectives on security. (Hence his recent appearance on 60 Minutes, commenting on TSA's airport screening procedures.) To bring wider perspectives to bear on security issues, Schneier (Chief Security Technology Officer at BT) held in 2008 the first Workshop in Security and Human Behavior, with participants from a broad swath of disciplines including economics, psychology and more.
Schneier spoke with CSOonline about his multidisciplinary view of the field and plans for 2009.
CSO: What was the biggest surprise or most enlightening development at the Workshop in Security and Human Behavior? The most interesting aspect of the workshop was how different the ways in which people were thinking about the same sorts of issues. Security is fundamental to many different disciplines, sometimes more explicitly than others, and different researchers have been working on the same sorts of problems, within their own discipline, for years. It was fascinating getting everyone in the same room and talking to each other.
For example, a lot of the seemingly irrational security trade-offs that the behavioral economists have documented can be explained by the evolutionary psychologists. And the effectiveness of social engineering with regards to computer attacks can, in part, be explained by those working in deception detection.
Gary Steele, the CEO of Proofpoint, mentioned recently that they have hired a bunch of people with backgrounds in gene sequencing, because it's all about pattern matching and thus directly applicable to problems like large-scale spam detection. What other fields are already contributing directly to security in surprising ways? Lots of disciplines contribute to security in surprising ways all the time. Security is an application as well as a discipline, so developments in many areas affect security. Think about the invention of the radio, which completely changed the world of policing. Or computing technology. Or automobile technology, used by both police and bank robbers. Or number theory, which was completely academic until Diffie and Hellman invented public key cryptography. Or, well, everything else.
Sign up for ITworld's Daily newsletter
Follow ITworld on Twitter @IT_world
On Twitter now
security
Powered by Twitter
Esther Schindler
If the comments are ugly, the code is ugly
claird
SVG a graphics format for 21st century
pasmith
Take Chrome OS for a test spin
Sandra Henry-Stocker
Solaris Tip: Have Your Files Changed Since Installation?
jfruh
Android fragments vs. the iPhone monolith
mikelgan
What Gizmodo missed about the Pro WX Wireless USB disk drive
Sidekick: The Good News & the Bad News
Either way you look at it Microsoft Data Center management did not follow standards or best practices in this failure. In which case it makes me wonder more about the outsourcing of corporate data much less personal data.
- mburton325
Join the conversation here
Quick, practical advice for IT pros. Made fresh daily.
Want to cash in on your IT savvy? Send your tip to tips@itworld.com. If we post it, we'll send you a $25 Amazon e-gift card.
Keep your computer running like new.
Have you been searching for a great antispyware to keep your computer running like new? If so, you will be happy to know that there are some great options out there. I have tried many different types of antispyware only to find that the majority of them find the exact same types of bugs. The biggest difference that you will find between all the different types of antispyware offered is the price. Search-and-destroy Antispyware is an excellent choice that can be purchased at a lower price than many of the other options available. If you are interested in discovering the benefits offered from antispyware solution from Search-and-destroy visit http://www.Search-and-destroy.com to learn more.