Matt Blaze has written an excellent paper: "Safecracking for the computer scientist."
It has completely pissed off the locksmithing community.
There is a reasonable debate to be had about secrecy versus full disclosure, but a lot of these comments are just mean. Blaze is not being dishonest. His results are not trivial. I believe that the physical security community has a lot to learn from the computer security community, and that the computer security community has a lot to learn from the physical security community. Blaze's work in physical security has important lessons for computer security -- and, as it turns out, physical security -- notwithstanding these people's attempt to trivialize it in their efforts to attack him.
Posted on January 14, 2005 at 8:18 AM • 11 Comments