society

DefCon 19, Day 1

Having finished with BlackHat, I checked out of the Flamingo and moved to DefCon’s new location this year, the Rio. This was an enormous upgrade from the Riviera, the previous location. For one, the conference center is nearly 50% bigger, and it’s beautiful. Traffic flow was greatly improved, despite record attendance (~12,000, from estimates I’ve [...]

industry, physical security, privacy, risk, society, statistics, terrorism

BlackHat USA 2011, Day 2

The second day of BlackHat started out with a keynote by Mudge. I attended this one despite the normally-dull nature of BlackHat keynotes, because while Mudge is a Fed now (he works for DARPA), he has a long history as a contributor to hacker culture and I wanted to hear what he had to say. [...]

attacks, crypto, industry, risk, society

The Trouble With Fighting Your Users

Companies like Apple that try to control devices purchased by end-users create their own serious security problems. It turns out that Apple trying to protect itself from you makes you vulnerable to attackers. Apple doesn’t want you to run anything on your phone that they didn’t approve. But of course, customers want to run whatever [...]

attacks, industry, risk, society

BlackHat 2009, Day 2

The Thursday keynote was given by Bob Lentz, a Deputy Assistant Secretary of Defense for the United States. His main point was the paradigm shift from network-centric security to what he called content-centric security, and the fact that this devalues the protections around network perimeters. Static defenses don’t work when all the services being used [...]

anonymity, attacks, crypto, hardware, industry, legal, networks, passwords, risk, society

A “Clear” Case of Failure

Clear, the “trusted traveler” program that allowed customers to bypass airport security lines, has shut down.  The story is an interesting case of bureaucratic disincentives and general failure around the whole mess known as airport security. A privately-run alternative to the TSA’s Registered Traveller program, Clear started out with what seemed like a good idea [...]

risk, society, terrorism