This has been lurking in my aggregator since earlier in the year.
Fascinating analysis and yet another example that “security by
obscurity” strategies are, at best, a very high-risk strategy.
Safecracking. Matt Blaze has written an excellent paper: “Safecracking for the computer scientist.” It has completely pissed off
the locksmithing community. There is a reasonable debate to be had
about secrecy versus full disclosure, but a lot of these comments
are… [Schneier on Security]
the locksmithing community. There is a reasonable debate to be had
about secrecy versus full disclosure, but a lot of these comments
are… [Schneier on Security]