[LINK] Thinking about security
Darryl (Dassa) Lynch
dassa at dhs.org
Sat Aug 19 22:01:25 AEST 2006
I'm responsible for a few networks, two of which have a great deal of
client/customer/user information associated with them. Security is something
I'm very concerned with and I take a great deal of interest in trying to
improve security for myself and those associated with me.
One of the models I often use, is to allow some compromise with my own
security but to be very inflexible with the security associated with others
data. This can become complicated but usually will involve better monitoring
on those systems my data is on whilst the security is slightly relaxed but
attempting to maintain a high security model for data that belongs to others.
The main point being I'm attempting to assume responsibility, where it is
within my power, so that others are protected without having to worry about it
much. I believe this is what most of us are attempting but perhaps this is
the wrong approach. It may be beneficial to the end user to be fully aware of
all the implications and to make their own choices.
Are we being arrogant in assuming we know best?
Darryl (Dassa) Lynch
More information about the Link
mailing list