No, We Aren't Doomed
Everyone with an interest in the state of IT security should read Lenny Zeltser's post at SANS entitled "Are We Doomed", which as the name implies, list reasons we'll continue to be plagued by difficult security challenges but it also lists reasons things aren't so bad. One positive reason not on the list is perhaps the most important.
That is, complex systems have already evolved, survived in thrived in adverse environments. Biological organisms, from the smallest single-celled creature to humans, are under constant threats from biological and environmental threats. Even lowly bacteria are susceptible to viruses.
The key to surviving is trying new things to counter threats. Those that work well survive. The same process is going on in system design. Weaknesses, like DNS, will eventually be replaced by more robust and resilient versions of DNS. Big, insecure desktops will be supplanted, to some degree, by online applications and large vendors well versed in security practices providing computing and storage services on a large scale.
The we're doomed/not doomed types of lists will never lose interest and their reason for being will never end. The state of security is constantly changing and will get better sometimes and worse at others but we'll survive, we always do.
Email This!
Digg it!
Sphere it!
Del.icio.us
Reddit!
Newsvine
