Dan Geer on Security, Monoculture, Metrics, Evolution, Etc.
Here is the text and video of Dan Geer’s remarks at Source Boston 2008, basically a L0pht reunion with friends.
At the end of the day, however, we are facing a much bigger, more metaphysical question than the ones I have so far posed. That I can pose many others is of no consequence; either you are sick of them by now or you are scribbling down your own as I speak. The bigger question is this—how much security do we want?
A world without failure is a world without freedom. A world without the possibility of sin is a world without the possibility of righteousness. A world without the possibility of crime is a world where you cannot prove you are not a criminal. A technology that can give you everything you want is a technology that can take away everything that you have. At some point, real soon now, some of us security geeks will have to say that there comes a point at which safety is not safe.
Leave a comment