?

Log in

No account? Create an account

Security, Scratch that, Bug Theater

« previous entry | next entry »
Apr. 4th, 2008 | 09:51 am

Security Theater

If you take the above wiki document and substitute "Security" for "Bug" it comes out surprisingly similar. Yesterday I was watching some developers lawyer themselves into a belief that what they were doing was right by "talking out" the issues. AKA, not solving, but just pushing definitions around and looking for a "this committee had a process and made a decision".

It dawned on me how similar in context this was to the current environment we find ourselves in at airports.

There are good security upgrades happening, but we don't see those.

Most of us would not know them, recognize them, or understand them. They take long periods of time often, because they require change. Some stuff is easy, but good security change takes time. We are not technical in this arena as outsiders, and for the most part neither are those internal.

So what do we do? We do things like ban all liquids over 3oz. It looks good, and it makes people feel comfortable.

Approaching releases can be a lot like this. People will do odd things to make other people happy (and often to avoid "bike shed" discussions).

The bigger the problem, the more theater that occurs.

Link | Leave a comment | Share

Comments {1}

awfief

(no subject)

from: awfief
date: Apr. 5th, 2008 03:53 am (UTC)
Link

The line-item veto is a horrible thing, wrt doing odd things to make other people happy. Hell, that's what lobbying is all about. Ugh.

Reply | Thread