Graham Leggett wrote:
David E. Ross wrote:
[...]
I have also visited sites with incorrectly configured site certificates.
[...]. I definitely do not want to be locked out of these sites either.
This is the classic balance between convenience and security.
inconvenience != security.
inconvenience == unsecurity.
In chernobyl, the security was implemented in a very inconvenient way.
The prime reason why occidental nuclear power plant are most secure is
not that they have more security than Tchernobyl.
It's that their security is much more convenient, and that's probably
the number one lesson people got out of chernobyl.
Recheck every security procedure and make sure it's easy enough to use
that people won't switch it out.
The chernobyl disaster happened after people had switched out almost
every security mechanism because they were so broken and inconvenient.
It very hard to find a solution that's both convenient and secure. But
that's the only way. Inconvenient solutions are strongly unsecure.
_______________________________________________
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
