Säkerhetsrelaterade citat

Vissa av dem är smarta, vissa är tänkvärda och vissa är bara roliga. Trevlig helg!

Always code as if the guy who ends up maintaining your code will be a violent psychopath who knows where you live. -John F. Woods

There are two kinds of cryptography in this world: cryptography that will stop your kid sister from reading your files, and cryptography that will stop major governments from reading your files. This book is about the latter. - Preface to Applied Cryptography by Bruce Schneier

Passwords are like toothbrushes; change them every two months and don't share them with your friends. -Okänd

Att ha en dator uppkopplad mot Internet är som att ha en generös urringning, man får förvänta sig att folk tittar men man ska inte behöva stå ut med att de tallar. -En vän drar paralleller till portscanning

Trust management is supposed to be an incredibly vague and provocative term invented by Matt Blaze. I don't know whether he intended it that way, but it comes natural to him. -Joan Feigenbaum, AT&T Labs

The computer industry is the only industry that is more fashion-driven than womens-fashion. Maybe I'm an idiot, but I have no idea what anyone is talking about. -Oracle-Larry om "Molnet"

Cookie authentication takes something youre going to forget and turns it into something youre going to lose. -Ryan Russel

The Unsafe Use of User Input goblin lurks just around every equals sign, wating to fling your deepest darkest diary entries at unsuspecting passers-by. -Mike Tracy

Read the specification like the Devil reads the Bible. -Heikki Kortti

The entire IT security industry is an accident: an artifact of how the computer industry developed. -Bruce Schneier

You bring me a select group of 10 hackers and within 90 days, I'll bring this country to its knees. -Jim Settle, Former Director, FBI Computer Crime Squad

SSL gives no security guarantees that are relevant for e-commerce. Still, users feel more secure. -Dr. Richard Walton, former director of CESG

Digital certificates provide no actual security for electronic commerce; it's a complete sham. -Bruce Schneier, Secrets & Lies

You know you are in a distributed system when the failure of a computer you didn't even know existed can render your own computer unusable. -Leslie Lamport

For systems A and B, A deceives B iff A possesses some character C with proper function F, and B possesses a mechanism C* with the proper function F* of producing representations, such that the proper function of C is to cause C* to fail to perform F* by causing C* to form false representations, and C does so in virtue of performing F, and B's falsely representing enables some feature of A to perform its proper function. -David Livingstone Smith definition of "deception"

Some people, when confronted with a problem, think 'I know, I'll use regular expressions.' Now they have two problems. -Jamie Zawinski, in comp.emacs.xemacs

/* You are not expected to understand this. */ -Comment in UNIX source by Ken Thompson

Reliable software does what it is supposed to. Secure software does what it is supposed to, and nothing else. -Ivan Arce

It was mathematically proved decades ago that it is impossible -- not an engineering impossibility, not technologically impossible, but the 2+2=3 kind of impossible. -Bruce Schneier on the feasability of creating a perfect antivirus

The problem with bad security is that it looks exactly the same as good security. -Bruce Schneier

The entire security of a cryptographic algorithm should be based exclusively on the confidentiality of its key, rather than the confidentiality of the algorithm. -August Kerckhoff (1835-1903)

If you spend more on coffee than on IT security, then you will be hacked. What's more, you deserve to be hacked.
-Richard Clarke, Former U.S. Cybersecurity Tsar

Whoever thinks his problems can be solved using cryptography, doesn't understand his problem and doesn't understand cryptography. -Roger Needham or Butler Lampson

Your code is always wobblying on top of a quite large pile of software. -Gary McGraw

Put all your eggs in one basket -- and watch that basket! -Mark Twain, The Tragedy of Pudd'nhead Wilson

Don't make failure less likely, make failure less meaningful. -Dan Geer, Silver Bullet podcast

Those who do not understand UNIX are condemned to reinvent it, poorly. -Henry Spencer, 1987

It's against all doctrine, but as the general reminds me, doctrine is the last refuge of the unimaginative. -Godfather, Generation Kill

Stefan Pettersson


Kommentera inlägget här:

Kom ihåg mig?

E-postadress: (publiceras ej)




HPS säkerhetsblogg

High Performance Systems logo

RSS 2.0