Säkerhetsrelaterade citat
Vissa av dem är smarta, vissa är tänkvärda och vissa är bara roliga. Trevlig helg!
Always code as if the guy who ends up maintaining your code will be a violent psychopath who knows where you live. -John F. Woods
There are two kinds of cryptography in this world: cryptography that will stop your kid sister from reading your files, and cryptography that will stop major governments from reading your files. This book is about the latter. - Preface to Applied Cryptography by Bruce Schneier
Passwords are like toothbrushes; change them every two months and don't share them with your friends. -Okänd
Att ha en dator uppkopplad mot Internet är som att ha en generös urringning, man får förvänta sig att folk tittar men man ska inte behöva stå ut med att de tallar. -En vän drar paralleller till portscanning
Trust management is supposed to be an incredibly vague and provocative term invented by Matt Blaze. I don't know whether he intended it that way, but it comes natural to him. -Joan Feigenbaum, AT&T Labs
The computer industry is the only industry that is more fashion-driven than womens-fashion. Maybe I'm an idiot, but I have no idea what anyone is talking about. -Oracle-Larry om "Molnet"
Cookie authentication takes something youre going to forget and turns it into something youre going to lose. -Ryan Russel
The Unsafe Use of User Input goblin lurks just around every equals sign, wating to fling your deepest darkest diary entries at unsuspecting passers-by. -Mike Tracy
Read the specification like the Devil reads the Bible. -Heikki Kortti
The entire IT security industry is an accident: an artifact of how the computer industry developed. -Bruce Schneier
You bring me a select group of 10 hackers and within 90 days, I'll bring this country to its knees. -Jim Settle, Former Director, FBI Computer Crime Squad
SSL gives no security guarantees that are relevant for e-commerce. Still, users feel more secure. -Dr. Richard Walton, former director of CESG
Digital certificates provide no actual security for electronic commerce; it's a complete sham. -Bruce Schneier, Secrets & Lies
You know you are in a distributed system when the failure of a computer you didn't even know existed can render your own computer unusable. -Leslie Lamport
For systems A and B, A deceives B iff A possesses some character C with proper function F, and B possesses a mechanism C* with the proper function F* of producing representations, such that the proper function of C is to cause C* to fail to perform F* by causing C* to form false representations, and C does so in virtue of performing F, and B's falsely representing enables some feature of A to perform its proper function. -David Livingstone Smith definition of "deception"
Some people, when confronted with a problem, think 'I know, I'll use regular expressions.' Now they have two problems. -Jamie Zawinski, in comp.emacs.xemacs
/* You are not expected to understand this. */ -Comment in UNIX source by Ken Thompson
Reliable software does what it is supposed to. Secure software does what it is supposed to, and nothing else. -Ivan Arce
It was mathematically proved decades ago that it is impossible -- not an engineering impossibility, not technologically impossible, but the 2+2=3 kind of impossible. -Bruce Schneier on the feasability of creating a perfect antivirus
The problem with bad security is that it looks exactly the same as good security. -Bruce Schneier
The entire security of a cryptographic algorithm should be based exclusively on the confidentiality of its key, rather than the confidentiality of the algorithm. -August Kerckhoff (1835-1903)
If you spend more on coffee than on IT security, then you will be hacked. What's more, you deserve to be hacked. -Richard Clarke, Former U.S. Cybersecurity Tsar
Whoever thinks his problems can be solved using cryptography, doesn't understand his problem and doesn't understand cryptography. -Roger Needham or Butler Lampson
Your code is always wobblying on top of a quite large pile of software. -Gary McGraw
Put all your eggs in one basket -- and watch that basket! -Mark Twain, The Tragedy of Pudd'nhead Wilson
Don't make failure less likely, make failure less meaningful. -Dan Geer, Silver Bullet podcast
Those who do not understand UNIX are condemned to reinvent it, poorly. -Henry Spencer, 1987
It's against all doctrine, but as the general reminds me, doctrine is the last refuge of the unimaginative. -Godfather, Generation Kill
--
Stefan Pettersson
Always code as if the guy who ends up maintaining your code will be a violent psychopath who knows where you live. -John F. Woods
There are two kinds of cryptography in this world: cryptography that will stop your kid sister from reading your files, and cryptography that will stop major governments from reading your files. This book is about the latter. - Preface to Applied Cryptography by Bruce Schneier
Passwords are like toothbrushes; change them every two months and don't share them with your friends. -Okänd
Att ha en dator uppkopplad mot Internet är som att ha en generös urringning, man får förvänta sig att folk tittar men man ska inte behöva stå ut med att de tallar. -En vän drar paralleller till portscanning
Trust management is supposed to be an incredibly vague and provocative term invented by Matt Blaze. I don't know whether he intended it that way, but it comes natural to him. -Joan Feigenbaum, AT&T Labs
The computer industry is the only industry that is more fashion-driven than womens-fashion. Maybe I'm an idiot, but I have no idea what anyone is talking about. -Oracle-Larry om "Molnet"
Cookie authentication takes something youre going to forget and turns it into something youre going to lose. -Ryan Russel
The Unsafe Use of User Input goblin lurks just around every equals sign, wating to fling your deepest darkest diary entries at unsuspecting passers-by. -Mike Tracy
Read the specification like the Devil reads the Bible. -Heikki Kortti
The entire IT security industry is an accident: an artifact of how the computer industry developed. -Bruce Schneier
You bring me a select group of 10 hackers and within 90 days, I'll bring this country to its knees. -Jim Settle, Former Director, FBI Computer Crime Squad
SSL gives no security guarantees that are relevant for e-commerce. Still, users feel more secure. -Dr. Richard Walton, former director of CESG
Digital certificates provide no actual security for electronic commerce; it's a complete sham. -Bruce Schneier, Secrets & Lies
You know you are in a distributed system when the failure of a computer you didn't even know existed can render your own computer unusable. -Leslie Lamport
For systems A and B, A deceives B iff A possesses some character C with proper function F, and B possesses a mechanism C* with the proper function F* of producing representations, such that the proper function of C is to cause C* to fail to perform F* by causing C* to form false representations, and C does so in virtue of performing F, and B's falsely representing enables some feature of A to perform its proper function. -David Livingstone Smith definition of "deception"
Some people, when confronted with a problem, think 'I know, I'll use regular expressions.' Now they have two problems. -Jamie Zawinski, in comp.emacs.xemacs
/* You are not expected to understand this. */ -Comment in UNIX source by Ken Thompson
Reliable software does what it is supposed to. Secure software does what it is supposed to, and nothing else. -Ivan Arce
It was mathematically proved decades ago that it is impossible -- not an engineering impossibility, not technologically impossible, but the 2+2=3 kind of impossible. -Bruce Schneier on the feasability of creating a perfect antivirus
The problem with bad security is that it looks exactly the same as good security. -Bruce Schneier
The entire security of a cryptographic algorithm should be based exclusively on the confidentiality of its key, rather than the confidentiality of the algorithm. -August Kerckhoff (1835-1903)
If you spend more on coffee than on IT security, then you will be hacked. What's more, you deserve to be hacked. -Richard Clarke, Former U.S. Cybersecurity Tsar
Whoever thinks his problems can be solved using cryptography, doesn't understand his problem and doesn't understand cryptography. -Roger Needham or Butler Lampson
Your code is always wobblying on top of a quite large pile of software. -Gary McGraw
Put all your eggs in one basket -- and watch that basket! -Mark Twain, The Tragedy of Pudd'nhead Wilson
Don't make failure less likely, make failure less meaningful. -Dan Geer, Silver Bullet podcast
Those who do not understand UNIX are condemned to reinvent it, poorly. -Henry Spencer, 1987
It's against all doctrine, but as the general reminds me, doctrine is the last refuge of the unimaginative. -Godfather, Generation Kill
--
Stefan Pettersson
Kommentarer
Trackback