May 30, 2017 at 4:58 am
The credentials used for validation must be capable of being replaced in their entirety when they get compromised.
The security guys are selling the concept of improved or foolproof security for minimal outlay. That is why they are pushing ideas such as voice recognition, iris scans, etc. These may initially be foolproof, but after technology gets involved they will be hacked.
There are no recognised standards that classify items into bands of security and specify the minimum level of protection for each band.
Unlocking a personal device or making a payment up to £/$/€30 may both fall in the same security band, while unlocking an enterprise device or making a higher value payment could both be in a higher security band. The standard should also classify IoT devices. This allows the arguments around different requirements and security mechanisms to be more structured. An end-game around this might be an ISO standard and manufacturers certifying their products as complying to that standard.
Original author: https://github.com/SQL-FineBuild/Common/wiki/ 1-click install and best practice configuration of SQL Server 2019, 2017 2016, 2014, 2012, 2008 R2, 2008 and 2005.
When I give food to the poor they call me a saint. When I ask why they are poor they call me a communist - Archbishop Hélder Câmara
Viewing post 16 (of 16 total)
You must be logged in to reply to this topic. Login to reply