What Good is Technology if You Don't Use It?
There is a lot of discussion about a grad student putting up a Web site that creates fake airline boarding passes. The vulnerability has been known for a while, in fact Senator Schumer of New York outlined just how simple a procedure is required to doctor a boarding pass. This is a prime example of not needing a better technology, but a better process.
A fake boarding pass is readily detected when information on a boarding pass is compared with an airline’s database. Better training on social engineering can prevent a would-be attacker from getting a key piece of information or physical access to a device. Phishers and spammers will keep devising new ways to get around filters and anti-spam vendors will keep responding with new and better detection methods. We need to use the technologies that are available but we also need to think about how our security measures can be circumvented. Sometimes a simple change of procedure can reduce the risk of an attack – or some other guy ending up in your seat in first class.
Email This!
Digg it!
Sphere it!
Del.icio.us
Reddit!
Newsvine
