lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Tue, 26 Dec 2006 16:19:46 -0800 From: coderman <coderman@...il.com> To: "Pavel Kankovsky" <peak@...o.troja.mff.cuni.cz> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: emergent security properties On 12/26/06, Pavel Kankovsky <peak@...o.troja.mff.cuni.cz> wrote: > ... > I am afraid it will be pretty difficult to find an example where the > security increases with complexity. Perhaps some Byzantine > "security-breach tolerant" systems? the only example that comes to mind is distributed / collaborative anomaly detection systems which become more robust with a larger number of entities and interactions to observe. in such a scenario, the ability of the system to accurately "detect" malicious activities or unusual failures would increase with the complexity of the system. [though this exposes a critical distributed component to attackers; poorly implemented and you've got a global witty worm, or worse...] _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists