August 14, 2003

Why Security Products Rarely Solve The Problem

Security products are useful when they enhance an organization's control over information flows and system reliability. Products that filter or otherwise pick out malicious behavior are only useful as alarm systems if the number of false alarms (false positives in industry-speak) is small.

Wired has just run a story written by a woman who spent some time working as a baggage screener for the TSA. Her experience demonstrates the problems with scanning in the physical world. Unfortunately, scanning network traffic often produces similar amounts of false positive alerts.

Posted by Abner on August 14, 2003 09:43 AM | TrackBack
Comments ARE BROKEN Send email instead - Thanks!

Recent Entries
iPhone's SIM Locks: Hardware vs. Software vs. Lawyers
Even (or especially) contests could use a security review
Vendors Responses: Voting Machines and the Pwnie Awards
Dude "Security Rocks"
iPhone Wi-Fi Vulnerability
Harry Potter Security
iPhone Hacking & Fustrations
Let the iPhone Hacking Begin
Geer heads to Washington, Again
This Just In: DRM still doesn't work
Phishing meets Internet Advertising
How long to unlock the iPhone Operating System?
Predictive Markets For Politics
The Irony of Phone Security Google Ads
Why Biometric Fingerprint Readers Are A Waste
How to Blag an Interview
Yet another Boston marketing flub
MAC vs. Vista Security
The latest in physical security
Data Loss Archive
Guerrilla Marketing Backfires in Boston
NY Times on the "Market" For Software Vulnerabilities
Not marketing security, marketing *during* security