[cryptome] Inevitable Security Critiques, Promises and Lemons

  • From: John Young <jya@xxxxxxxxxxxx>
  • To: cryptography@xxxxxxxxxxxx,cryptography@xxxxxxxxxxxxx,cypherpunks@cpunks, cryptome@xxxxxxxxxxxxx
  • Date: Sat, 19 Apr 2014 10:07:38 -0400

Gratifying to see a few of those here featured in NY Times today
discussing inevitable failures and contradictions in security:

http://www.nytimes.com/2014/04/19/technology/heartbleed-highlights-a-contradiction-in-the-web.html

To be read with Schneier's 2007 account of inevitable security lemons
(resurrected by Coderman):

https://www.schneier.com/blog/archives/2007/04/a_security_mark.html

Our security consumer advice based on frank, honest and distrustful
discussions here for nearly 18 years:

"Unreliable SSL has been uninstalled. All security and privacy policies are unreliable. Protect yourself against security and privacy promise."

Still hopeful Hettinga will plug these insider breaches of why marketing
lemonade is so lucratively persuasive to those who know better. And who
do not disclose here.



Other related posts:

  • » [cryptome] Inevitable Security Critiques, Promises and Lemons - John Young