lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20040510164703.F12599@dekadens.coredump.cx>
From: lcamtuf at ghettot.org (Michal Zalewski)
Subject: Learn from history?

On Mon, 10 May 2004, Alerta Redsegura wrote:

> When we talk about risk, we are already taking into account the odds of the
> event happening:
>
> R = E x p
>
> Where:
>
> R = Risk
> E = event
> p = probability of the event happening

If we must toy with bogus marketspeak "equations", shouldn't E - at the
very least - numerically correspond to the consequences (loss?) caused by
an event, rather than being an event itself?

Otherwise, my risk R of getting a bar of chocolate from a stranger is
0.001 * getting_chocolate_bar_from_stranger.

-- 
------------------------- bash$ :(){ :|:&};: --
 Michal Zalewski * [http://lcamtuf.coredump.cx]
    Did you know that clones never use mirrors?
--------------------------- 2004-05-10 16:47 --

   http://lcamtuf.coredump.cx/photo/current/


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ