News: 2001 Archives

Three Minutes With Security Expert Bruce Schneier

Security expert pushes full disclosure, forcing vendors to admit and fix bugs quickly.

  • Kim Zetter
  • PC World
  • September 28, 2001

Bruce Schneier is founder and chief technology officer of Internet security firm Counterpane. He has written two books on cryptography and computer security, Secrets and Lies and Applied Cryptography, and is an outspoken critic of Microsoft and other software vendors that produce products that contain dangerous security holes. We spoke with him about who is responsible for software security flaws and what consumers can do about the growing problem.

PCW: Are there more security holes in software, or are we just getting better at finding them?…

REVIEW: Bruce Schneier, Secrets and Lies: Digital Security in a Networked World

  • Rob Slade
  • RISKS Digest
  • July 30, 2001

Secrets and Lies has generated a great deal of interest in the security community this year. Much of this interest probably stems from the simple fact that it isn’t every day (or every year) that you get a general security book, written for the non-specialist, produced by a major name in the field. But one point seems to have been glossed over in the praise for this work. Schneier’s writing is lively, entertaining, and even playful throughout the entire book. Not only is this volume a realistic and useful view of the security enterprise, but it’s a lot of fun…

Video: Bruce Schneier Answers Questions

  • DEF CON 9
  • July 13, 2001

Bruce Schneier answered audience questions at the DEF CON hacking conference.

Watch the Video or Listen to the Audio on

Secrets & Lies: Digital Security in a Networked World (Review)

  • M. J. Casey
  • International Hydrographic Review
  • June 2001

If you think technology can solve your security problems, then you don’t understand the problems and you don ‘t understand the technology.

So sayeth Bruce Schneier, the guru in security systems circles. His statements are often blunt but he certainly backs them up with the right credentials. He authored one of the classic texts on cryptography (Applied Cryptography) and BLOWFISH , one of the most frequently used encryption algorithms used in business systems today. BLOWFISH is the algorithm used in the PRIMAR Security System. Although Schneier’s first book, …

Review of Secrets and Lies

  • The Business Security e-Journal
  • May 2001

There are a lot of misconceptions about computer security, and a lot of unrealistic expectations about what is and is not possible. The truth is that completely reliable computer systems are impossible to achieve, and secure computer and networking systems are equally impossible. When this is understood, one is, at last, in a position to recognize risk and manage it.

Secrets and Lies gives the clearest explanation we have yet seen as to the fundamental problems faced when dealing with technology. If you are responsible, directly or indirectly, for data security, you need to understand that it is impossible to make a program that is error-free. In addition, as programs become larger, more complex, and more connected with other programs on other machines, they become even more prone to errors and to errors caused by interactions among systems…

Secrets and Lies: Digital Security in a Networked World

  • Ben Rothke, CISSP
  • Security Management
  • February 2001

Secrets and Lies: Digital Security in a Networked World. By Bruce Schneier; published by John Wiley & Sons, 800/225-5945 (phone), 732/302-2300 (fax); 432 pages; $29.99.

Consider the scores of books about computer and network security available today. Many are fat tomes, exhaustively written with myriad details. But corporate networks remain extremely insecure. Is anyone buying or reading these books?

With its mantra that security is a process, not a product, Secrets and Lies is one of the most important security books to come out in the last ten years. It forces information security managers to focus on security at the macro level—the processes—rather than at the micro level, as in the installation of a firewall or intrusion detection system. And since so many managers do equate security with firewalls, it is easy to understand why corporate networks are at risk…

Secrets and Lies by Bruce Schneier: A Shockwave Review

  • David E. Romm
  • Shockwave
  • 2001

The internet is growing up and, like a small child becoming an adolescent, it’s having growing pains. Fortunately, we have Bruce Schneier to act as our technological Dr. Spock.

The internet has moved from a Defense Department initiative to a toy for geeks to a powerful research and communications tool and is now a major economic force. Up until recently, the net was pretty much left alone. With the advent of the World Wide Web and faster connections speeds, commerce came to the net. Now, it takes big money just to start a net company. We need to treat the net like an young adult, even though the technology is still in its infancy…

Sidebar photo of Bruce Schneier by Joe MacInnis.