[133974] in cryptography@c2.net mail archive
Re: Fake popup study
daemon@ATHENA.MIT.EDU (Steven M. Bellovin)
Wed Sep 24 21:07:57 2008
Date: Wed, 24 Sep 2008 20:52:03 -0400
From: "Steven M. Bellovin" <smb@cs.columbia.edu>
To: "Perry E. Metzger" <perry@piermont.com>
Cc: Cryptography <cryptography@metzdowd.com>
In-Reply-To: <87d4it2gxi.fsf@snark.cb.piermont.com>
On Wed, 24 Sep 2008 20:43:53 -0400
"Perry E. Metzger" <perry@piermont.com> wrote:
>
> "Steven M. Bellovin" <smb@cs.columbia.edu> writes:
> >> Human factors haven't received nearly enough attention, and as
> >> long as human factors failings are dismissed as the fault of
> >> "idiot users", they never will.
> >>
> > Strong agreement.
>
> I don't disagree that much more needs to be done on human factors. I
> just don't see it as a panacea.
There are no panaceas in this business. As I told my class yesterday,
if they learn nothing else they should remember that security is a
systems property, and everything interacts.
--Steve Bellovin, http://www.cs.columbia.edu/~smb
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
