Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Future of Security

Posted by michael on from the need-digital-anti-aircraft-guns dept.

Kvorgette writes "Scott Berinato in The Future of Security presents a very dark future of security in the years around 2010. Several computer security experts expect that a major security-related problem (a 'digital Pearl Harbour') will change software development procedures and remove the freedom in computer use we are striving for. The worst part is, most experts apparently think removal of software tools and access to information from the majority of computer and Internet users would be a good thing."

11 of 331 comments (clear)

  1. Charles in charge of our days and our nights by ObviousGuy · · Score: 4, Funny

    I know, different Charles Baio.

    Still, unless you count Buddy, Charles provided a great role model and environment for the kids to grow up in. Security through education, not necessarily obscurity or technological whizbangitry.

    To reiterate: 1) Security can only be achieved through education. 2) I would have liked to fuck the older sister on that show.

    --
    I have been pwned because my /. password was too easy to guess.
  2. Hello.. by rylin · · Score: 0, Funny

    Hello, I'll be your Microsoft representative today.
    Our newest software releases - codename "orange clothing" - are fully Secure Computing(tm) enabled, and features Digital Restriction^H^H^H^H^H^H^H^H^H^Hights Management, firewalls and authentication mechanisms built into your hardware.
    You will no longer be troubled by the issues arising with "Open Source", and you are now also able to buy entire server farms straight from us - your beloved Government.

  3. My predictions. by Anonymous Coward · · Score: 3, Funny

    Hackers will find a root hole in Mac OS X, and use all the macs in the world to commit terrorist acts.

    More Gnome developers will be assinated by the Korporation. Three have already.

    Linux torvolds will be arrested, become a slave for mirosoft.

    The trolls on slashdot will take over, and the GNAA members will kill micheal sims and cowboyneal

    Microsoft will take Linux, KDE, and use it for the version of windows beyond longhorn, and call it Windows Kinux.

    This post will be moderated -1, insightful.

    1. Re:My predictions. by Anonymous Coward · · Score: 0, Funny

      You left out some bits:

      Hackers will find a root hole in Mac OS X, and use all the macs in the world to commit terrorist acts.

      ...but devoted Apple fans will point out that the terrorist acts were actually pretty cool and original.

      More Gnome developers will be assinated by the Korporation. Three have already.

      ...and the word 'assinated' will gain popularity in Slashdot write-ups.

      Linux torvolds will be arrested, become a slave for mirosoft.

      ...only instead of 'indentured servitude', it's now called 'Palladium End User License Agreement'.

      The trolls on slashdot will take over, and the GNAA members will kill micheal sims and cowboyneal

      ...but oddly the journalistic content on Slashdot actually improves as there are only about a dozen dupes every day.

      Microsoft will take Linux, KDE, and use it for the version of windows beyond longhorn, and call it Windows Kinux.

      ...but the project is delayed for 12 months as Microsoft developers struggle to introduce enough vulnerabilities into Windows Kinux before release.

  4. Secure package management to avoid trojans by Debian+Troll's+Best · · Score: 4, Funny
    The 'experts' in the article seem to think that restricting access to the internet and to software applications would be a good thing for security in the long run. I'm only a humble system administrator, so it isn't for me to decide on high level policy, only to implement it. But where I feel I can comment is on a technical level. Possibly the biggest threat the average user faces today is that of the 'trojan'. No, not the prophylactic device, but the type of insidious security threat that you invite into your virtual home, where it then uncloaks into something altogether nastier. Devising systems to combat the spread of trojans is something which I devote a lot of my spare time to. Linux users think they may be immune to trojans, but that isn't true. 95% of Linux users trust their binary package managers implicitly, yet this is where the biggest hole is. I propose a solution: Trusted apt-get.

    Trusted apt-get is a fully secured, digital rights managed version of the popular package management system for Debian. However, Trusted apt-get differs in many ways. In order to avoid the situation of people being tricked into installing trojan-containing .deb files, all Trusted apt-get packages come from secured, trusted servers. Many of these are hosted in former Russian military data centres, and are easily identified by their '.ru' domain names. This is a mark of trust. Secondly, the Trusted apt-get source code has undergone a line-by-line security audit by Theo from OpenBSD. A lot of people believe that Theo isn't all that keen on Linux, but it's mostly been due to the lack of security focus. Trusted apt-get changes that. The final component is a DRM layer in apt-get, which allows for trusted, copyrighted closed source packages to be easily installed on any Debian system. This DRM layer is implemented using standard UNIX crypt() calls, so it's really portable, yet really secure.

    We can all look forward to the day when downloading trusted, trojan free software is as simple as issuing a 'trusted-apt-get install gator' command (followed by a reboot. Rebooting flushes insecure code from the processor execution stack, and is the only NSA-approved way to install software safely on a UNIX/Linux system). I believe Trusted apt-get will be available as the standard package manager from Debian 4.0 onwards. Until then, apt-get play it safe.

  5. v.0.1 ObviousEdit by ObviousGuy · · Score: 1, Funny

    Now with Internet Spell Checking! No need to worry about an outdated spell checker, the Internet Spell Checking feature of ObviousEdit is updated every day!

    Remember to click 'Yes' for Internet Access during the install.

    --
    I have been pwned because my /. password was too easy to guess.
  6. YAWP by tomstdenis · · Score: 3, Funny

    Yet Another Weak Prediction.

    I predict in the next or previous six months you had a birthday.

    And also that it will rain on July 14th sometime in the next 50 years in Ottawa.

    Can I get a published article too now?

    Tom

    --
    Someday, I'll have a real sig.
  7. Relative security of Linux distributions by Debian+Troll's+Best · · Score: 4, Funny

    With so much of the web's infrastructure now running on Linux systems, the question needs to be asked: "How secure is the average Linux distribution". If Linux is to continue its drive into the data center, with solid distributions like Debian and Mandrake at the spearhead, is it time for the Linux kernel to undergo the same type of rigorous, line-by-line security audit that OpenBSD has been built around? What is the opinion of Slashdot users out there who have had to implement a 'front line' Linux box, exposed to the day to day attacks that are part and parcel of an Internet exposed server? Are you wanting more security, or is Linux solid enough? Is OpenBSD really necessary, or is it mostly just hype? And are our current packaging systems robust enough to prevent the kind of trojan episodes which seem to grip the Windows 2000 Server community on an almost weekly basis. Can apt-get take us up to 2010 in secure confidence? I'd love to hear your opinions.

  8. Al Gore invented internet security by Anonymous Coward · · Score: 0, Funny

    And the internet

  9. Re:I'm an Expert by TheMidget · · Score: 2, Funny
    A few years ago, most people couldn't spell "virus" (well, they probably still can't, but they at least know what it is.)

    And even if they can spell it, they most certainly can't spell its plural!

  10. hmmm... by Tumbleweed · · Score: 3, Funny

    Sounds more like a _Perl_ Harbour to me.