Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Security Czar
Scott Granneman, 2006-03-23

In this column Scott Granneman takes the role of dictator of the security world and presents his ideas about mandatory reforms that would improve security for millions of people.

Comments Mode:
Security Czar 2006-03-23
Erik N
Security Czar 2006-03-23
Anonymous (1 replies)
Here here!!! 2006-03-24
Anonymous (1 replies)
Re: Here here!!! 2006-11-08
Anonymous
Security Czar 2006-03-23
Stonewall
Security Czar 2006-03-23
Wremes (1 replies)
Re: Security Czar 2006-03-31
Anonymous
Security Czar 2006-03-23
Mr. Negative (1 replies)
Re: Security Czar 2006-03-26
Anonymous
Let's go for it! 2006-03-23
assurbanipal (2 replies)
Re: Let's go for it! - Why? 2006-03-24
Anonymous
Re: Let's go for it! 2006-04-14
Anonymous
Security Czar 2006-03-23
Nekromancer (1 replies)
Re: Security Czar 2006-03-30
EasterNerd (1 replies)
Re: Re: Security Czar 2006-03-31
Mick
Security Czar 2006-03-23
infamous41md (1 replies)
Re: Security Czar 2006-03-23
Todd Knarr (1 replies)
Re: Re: Security Czar 2006-03-23
infamous41md
Security Czar 2006-03-23
Anonymous (1 replies)
Re: Security Czar 2006-04-14
The Finger
Security Czar 2006-03-24
Anonymous
Security Czar 2006-03-24
Anonymous
Security Czar 2006-03-24
Anonymous
Security Czar -- A.K.A. Mr. Tin Pot Economic Regulator 2006-03-24
Doug Sibley (1 replies)
Re: Security Czar -- A.K.A. Mr. Tin Pot Economic Regulator 2006-03-29
Anonymous (1 replies)
Re: Re: Security Czar -- A.K.A. Mr. Tin Pot Economic Regulator 2006-04-01
Doug Sibley (1 replies)
Re: Re: Re: Security Czar -- A.K.A. Mr. Tin Pot Economic Regulator 2007-06-21
Anonymous
Security Czar - more reading of history needed 2006-03-24
Craig S Wright (1 replies)
Re: Security Czar - more reading of history needed 2006-04-14
Anonymous
Security Czar 2006-03-24
Craig S Wright
No mandatory training 2006-03-27
Michael Scovetta (3 replies)
Sorry, I agree with most of your points, but certainly not the first. You don't attend mandatory training classes when you purchase other goods like VCRs, drills, or abrasive chemicals. You don't even attend training classes before you have a kid.

Security needs to become invisible. You, the end-user, shouldn't need to worry about patching your systems, upgrading your anti-virus, etc. This should all be part and parcel of the total cost of owning a computer, and should come pre-installed, invisible, and just plain working. Microsoft has done a (somewhat) good job in their auto-updates, but why is anti-[virus|spyware] still an "add-on"? These need to become integrated. I don't want to get a $9.99/year charge for these updates. These should be free. I don't pay $9.99/year to keep my keyboard working.

Trying to teach security to the unwashed masses is a Bad Idea. Spend that money fixing the system and the process so that they don't need to worry about it.

That's my take, anyway.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/394/33391#33391
Re: No mandatory training 2006-03-29
Anonymous
Re: No mandatory training 2006-03-29
Anonymous
Re: No mandatory training 2006-03-30
Anonymous
Yes! (except for one thing...) 2006-03-28
Penguinisto
Security Czar 2006-03-29
Anonymous
Security Czar 2006-03-30
Lunkwill
Security Czar 2006-03-31
Paul Stepowski
Security Czar 2006-03-31
FortHEX
Security Czar 2006-04-02
Anil B







 

Privacy Statement
Copyright 2007, SecurityFocus