by Mike Masnick

The Security Tax And The Toll It Takes

from the security-ain't-cheap dept

Yesterday, we wrote about an MIT Tech Review piece talking about how the internet was broken, and needed an architectural overhaul for better security. That was the first in a three part series. The second part came out tonight, and goes into more detail about the supposedly weakening structural integrity of today's internet. The problem is presented as something of a house of cards. Over the past few decades, as the internet has grown and changed and new security problems have been exposed, we've just patched them over. But not everyone patches the same way, and not all the patches work together nicely. So the system has grown increasingly complex in ways that should only get worse. The other interesting idea put forth in the article is that security is a "tax" on all computing. The tax is made up of the price of software, where extra time and money needs to go into developing it security, to the time and distractions of having to repair software, even to the processing power wasted on the all those security apps you have to run these days. The fear is that, based on the house of cards approach, this tax keeps getting bigger and bigger. So far, it's been manageable, but does it always stay that way? Definitely some interesting things to think about -- but the two articles still haven't touched on the unintended consequences of trying to completely re-architect the internet in a more secure manner, so hopefully part III will at least acknowledge this issue.

Reader Comments

Subscribe: RSS

View by: Time | Thread

  • identicon
    eeyore, 20 Dec 2005 @ 5:32am

    No Subject Given

    sounds like somebody is still preaching Bob Metcalf's prophecy of the inevitable collapse of the internet. Bob was predicting this over ten years ago and we're still waiting...

    reply to this | link to this | view in chronology ]

  • identicon
    Don Gray, 20 Dec 2005 @ 5:42am

    Monolithic is better?

    Hasn't Microsoft and the market penetration it enjoys in the OS market shown that a monolithic approach is NOT better for security?
    What some would consider a "house of cards" others would consider a defensive strategy of not being a cookie cutter.
    Could the securing of the Internet be more efficient? Yes. Would that make it more secure? Not necessarily.

    reply to this | link to this | view in chronology ]

Add Your Comment

Have a Techdirt Account? Sign in now. Want one? Register here
Get Techdirt’s Daily Email
Use markdown for basic formatting. HTML is no longer supported.
  Save me a cookie
Follow Techdirt
Techdirt Gear
Show Now: Takedown
Report this ad  |  Hide Techdirt ads
Essential Reading
Techdirt Deals
Report this ad  |  Hide Techdirt ads
Techdirt Insider Chat
Report this ad  |  Hide Techdirt ads
Recent Stories
Report this ad  |  Hide Techdirt ads


Email This

This feature is only available to registered users. Register or sign in to use it.