EVOLUTION AND FIXED IDEAS

There is a problem that we in the online security game almost never try to fix. I am going to call it the reality gap.

THE SET UP
You see, we attempt to educate you all on how to stay safe and secure online, and reporters always want us to list five easy things you can do to secure your data. As if you were baking a cake or tuning up your car. And we oblige, we tell them about better passwords and antimalware solutions and firewalls and whatever the hot topic of the day might be.

THE PROBLEM
And every time we get that message across, we are damning some of the people who understand the message just fine and do the things that we suggest.

DAMNING?
This is not like any situation you have ever dealt with because there are BAD GUYS on the other side of the equation. We tell you to patch things, or to do whatever, and the bad guys change their plans to get around that almost immediately. In some cases, they exploit the security advice to turn it against you (the user) but they always react and shift their attacks.

THE DAMNED
It’s not that the advice is bad, it just changes very rapidly. Here is rule one for system security:
You will need to change your protection ideas on a regular basis, there is no “solid ground” for you to stand upon. Yesterday’s ideas might actually be toxic.

THE GOOD NEWS
You will get more and newer and better advice all the time. We will do our best to keep you secure and safe.

ANTIVIRUS IS DEAD?
This recent news article got all our attention.The truth is, nobody in the industry (including the company that made the announcement) has made an actual antivirus product for quite a while. Today’s internet security products contain reputation analysis, behavior monitoring, whitelisting and about a dozen other tools. Some prevent intrusion, some detect it, some repair it. It’s about as high tech as anything you put on your computer. And despite all that, we still call it Antivirus because we have established a market segment that you all understand.

By the way, I do work for a security company called F-secure. We are going to discuss the modern paradigm for malware and intrusion fighting, and we are going to do it in detail. This is going to take a while, so bear with me.

4 thoughts on “EVOLUTION AND FIXED IDEAS

  1. So, I liked your post today. That’s unusual for me; I’m apparently jaded to much there is online. But this post, IMHO shows you in good form, Mr. Perry; I see your posts via the wordpress reader, and so on. Your post shows more poetry and imagination than the usual dry tech blogs, opinions, advice, summaries. In particular, the paragraph The Damned, reminded me of an I Ching reading, or perhaps a statement from the Lao Tzu or Confucious.
    I appreciate the large type/font as well. Perhaps it was a side effect of making the page “pocket toy” -friendly, but, it shows respect for all of us over 50 with failing eyesight or visual impairment. Moreover, a big, obviously non-trivial percentage of americans, europeans, and brits wear corrective lenses of some kind. Other bloggers should follow your example in this.
    HJK

    Like

    1. As I approach my 60th birthday later this year, I appreciate larger fonts all the more. This former typesetter (GO AM/Varityper EditWriter, Go Compugraphic!) I think we are all looking at guaranteed eyestrain.

      Like

      1. Hi Henry. I saw this blog too, David, the “You will need to change your protection ideas on a regular basis, there is no “solid ground” for you to stand upon. Yesterday’s ideas might actually be toxic.” reminded my of the i-ching as well.

        Like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s