Friday, September 15, 2006

OMG, Not Another Security Analogy!

Don't you hate it when people say "ah, security is just like X", with X=rand() :-) Here is another amusing one: "security is like a human immune system."

It his post, Chris @ RationalSecurity slams a post of Richard Stiennon on that very subject ("The human body is a good metaphor for the way security should be.")

It is kind of hard to argue with parts of it (like "You hardly ever notice when your body is attacked because the majority of attacks are warded off." and, ideally, security should fit that too), but admittedly security should not fail the same was the immune system fails, since it is not pretty...

Dr Anton Chuvakin