We call this physical "security" cc @SwiftOnSecurity pic.twitter.com/F0ixIZPgHF
— DownloadMoreRam.com (@DownloadMoreRam) October 1, 2014
It's inevitable that keypads will wear, dramatically reducing the number of options over which an intruder need search in a brute-force attack.So why not design for it at the outset? Make and sell pads that have four or five of the keys pre-worn. If other keys wear down over time, it would be much harder to tell which are newly worn, and which were always like that. And an intruder could never really be sure whether the pad had pre-worn keys unless he'd been watching the door since it was installed.
Seems pretty obvious as solution. So why don't we have it?
- Systematic underestimation of keypad tendency to do this?
- But then wouldn't some clever firm take the market by pointing things out to consumers?
- The solution not having occurred to anyone else?
- This seems exceedingly unlikely; it is too obvious
- Most purchasers caring less about security than about having been seen to have done something about security?
- Maybe, but that can't hold in general
- Buying this kind of keypad binds security-conscious places to rotating their codes every few months lest the code become common knowledge, with some firms then failing to follow up?
- Seems unlikely: the ones that care about security to start with don't need the binding.
Very cool
ReplyDeletePerhaps the person who decides on which security pads to buy is not the beneficiary?
ReplyDelete(Also, the post may be based on a false premise - I don't remember ever having seen worn-off keypads. Having said that, there's a lot of places I've never been to, including New Zealand.
Living in a country where most houses can easily be broken into with a sledgehammer, let alone a chainsaw, I don't think many Kiwis are concerned about physical security. It's mostly just semiotics --- and where security is really important, reliance on private policing via the free market...
ReplyDeleteGareth's deal is that:
ReplyDelete- he cannot deal with intellectual opponents honestly,
- he is more concerned with being right than being correct, and so being dishonest is a feature not a bug,
- he is lazy, and listening is hard.
He has always been this way. Anyone who knows the smallest thing about his new area of "expertise" is called corrupt and dismissed.
He is no longer an economist of any standing and each new arrogant declaration sullies his previous work. He is New Zealand's Paul Krugman.