Security vs? Usability « Vincent Gable’s Blog

February 19, 2009

Security vs? Usability

Filed under: Design,Programming,Quotes,Security,Usability | Risk
― Vincent Gable on February 19, 2009

In most cases, how an authentication system works when a legitimate user tries to log on is much more important than how it works when an impostor tries to log on. No security system is perfect, and there is some level of fraud associated with any (authentication method). But the instances of fraud are rare compared to the number of times someone tries to log on legitimately.

—Bruce Schneier on balancing security and usability

I like thinking about security. But, inspite of all the dramatic headlines, I believe bad usability causes far more damage then the bad security.

A more usable system should make recovering from a security breech easier. It’s easier to make things right, when it’s easier to make things.

Usability limits what people can do with something. Is it just coincidence, or does that sound like a partial definition of security?

No Comments »

No comments yet.

RSS feed for comments on this post.

Leave a comment

About This Blog

I'm on Twitter

Interesting Links
Search for:
Selected Posts
Popular Posts
Stuff I Read
- [RSS] /dev/why!?!
- [RSS] a glob of nerdishness
- [RSS] Ask E.T
- [RSS] bbum's weblog-o-mat
- [RSS] Better Elevation
- [RSS] Big Contrarian
- [RSS] Big Nerd Ranch Weblog
- [RSS] cabel.name
- [RSS] Call Me Fishmeal.
- [RSS] Chad Weider
- [RSS] Chris Hanson
- [RSS] Clarkcox.com
- [RSS] Clarkcox.com
- [RSS] Clay Shirky
- [RSS] American Drink
- [RSS] MiXed Company
- [RSS] The Cocktail Chronicles
- [RSS] Underhill-Lounge
- [RSS] Cocoa Is My Girlfriend
- [RSS] Cocoa with Love
- [RSS] Coding Horror
- [RSS] cwbowron
- [RSS] Dan Wood: The Eponymous Weblog
- [RSS] Dangerous Ideas | Big Think
- [RSS] Daring Fireball
- [RSS] Dolores Labs Blog
- [RSS] Hunch Blog
- [RSS] Last.fm – the Blog
- [RSS] OkTrends
- [RSS] Dave Dribin's Blog
- [RSS] David Weiss
- [RSS] Delicious/network/VTPG
- [RSS] Delicious/tjayluke/must_read
- [RSS] Delicious/VTPG/toread
- [RSS] Devour
- [RSS] dive into mark
- [RSS] Domain of the Bored
- [RSS] Eschatology
- [RSS] evand.org
- [RSS] Extremely Satisfactory Totalitarianism
- [RSS] Best of Wikipedia
- [RSS] Mesofacts: slowly changing facts - Blog
- [RSS] Uploads by CollegeBinary
- [RSS] feed/http://www.rall.com/rallblog/feed
- [RSS] Fiery Robot!
- [RSS] Five Whys
- [RSS] Fun Script
- [RSS] Fun with Objective-C
- [RSS] furbo.org
- [RSS] Good Math, Bad Math
- [RSS] Covered
- [RSS] Curved White
- [RSS] Delicious Ghost
- [RSS] lamouche
- [RSS] Letterheady
- [RSS] Photo Synthesis
- [RSS] PicoCool / Popular items
- [RSS] riot rite right clit clip click
- [RSS] Gus's weblog, adventures in Flying Meat.
- [RSS] Hamster Emporium
- [RSS] active questions tagged haskell - Stack Overflow
- [RSS] Learn You a Haskell for Great Good!
- [RSS] Modern Mechanix
- [RSS] Paleo-Future Blog
- [RSS] Sunday Magazine
- [RSS] Wired Reread
- [RSS] Dinosaur Comics
- [RSS] Explosm.net
- [RSS] garfield minus garfield
- [RSS] http://www.kickingbear.com/blog/
- [RSS] I Love Charts
- [RSS] Joe Mathlete Will Draw Anything You Ask Him To On An Index Card
- [RSS] MARMADUKE EXPLAINED
- [RSS] Nedroid Picture Diary
- [RSS] NEW MATH by CRAIG DAMRAUER
- [RSS] Santa, NO!
- [RSS] Saturday Morning Breakfast Cereal (updated daily)
- [RSS] Sharing cheap yet deep knowledge since a couple weeks ago
- [RSS] So Awesome It Hurts
- [RSS] The Comics Curmudgeon
- [RSS] Toby, Dave & Ian Explain XKCD
- [RSS] Urban Prankster
- [RSS] xkcd.com
- [RSS] Idle Words
- [RSS] Important Shock
- [RSS] inessential.com
- [RSS] Interesting Feeds
- [RSS] app.itize.us
- [RSS] app.itize.us
- [RSS] Application Submission Feedback
- [RSS] Clickable Bliss Blog
- [RSS] iPhone & iPad UX Reviews
- [RSS] iPhone Developer News
- [RSS] More than meets the eye
- [RSS] tap tap tap
- [RSS] Tapity
- [RSS] The FutureBlog
- [RSS] Jeff Plaisance
- [RSS] Joel on Software
- [RSS] KATI
- [RSS] kottke.org
- [RSS] Lambda the Ultimate - Programming Languages Weblog
- [RSS] MacRumors : Mac News and Rumors
- [RSS] Matt Legend Gemmell
- [RSS] metablog
- [RSS] Michael Tsai's Weblog
- [RSS] Non-obvious solutions
- [RSS] NSBlog
- [RSS] ObjColumnist
- [RSS] On Ruby
- [RSS] ongoing
- [RSS] Open Kosmaczewski
- [RSS] The Frontal Cortex
- [RSS] You Are Not So Smart
- [RSS] ranchero.com
- [RSS] Rands In Repose
- [RSS] Red Sweater Blog
- [RSS] rentzsch.tumblr.com
- [RSS] ridiculous_fish
- [RSS] Safe from the Losing Fight
- [RSS] Sci-Fi Hi-Fi: Weblog
- [RSS] Secure Mac Programming
- [RSS] ExpandMyWealth.com
- [RSS] Freedom to Tinker
- [RSS] Schneier on Security
- [RSS] Sentient Developments
- [RSS] SIGPIPE 13
- [RSS] Slife Labs Blog
- [RSS] Steve Nygard's Weblog
- [RSS] stevenf
- [RSS] Stevey's Blog Rants
- [RSS] Successful Software
- [RSS] The Reinvigorated Programmer
- [RSS] Theobroma Cacao
- [RSS] Thought Palace
- [RSS] Three Letter Acronym
- [RSS] tiara.org
- [RSS] Toluju - Toby Jungen
- [RSS] Uli's most useless blog in the World
- [RSS] Under The Microscope
- [RSS] chartjunk
- [RSS] Design Your Life - BLOG
- [RSS] Dubroy.com/blog
- [RSS] ignore the code
- [RSS] The BUI* Gallery
- [RSS] The Russians Used a Pencil
- [RSS] UI and us
- [RSS] UX Myths
- [RSS] Visual Languages
- [RSS] Waxy.org Links
- [RSS] Browser Bits
- [RSS] Surfin' Safari
- [RSS] Why does everything suck?
- [RSS] xkcd

Powered by WordPress