LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for June 20, 2013

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Secruit should depend on the impact

Secruit should depend on the impact

Posted May 9, 2008 2:54 UTC (Fri) by dps (subscriber, #5725)
Parent article: Cryptographic splicing makes for a Wordpress vulnerability 

What the Murdoch paper fails to say is that what security you need depends on the impact of
breaking the scheme. If someone steals a LWN cookie or WSJ cookie the marginal cost of
shipping the bits to them too is presumably minimal.

If you are thinking of online banking, stock trading or another system where the impact can be
large then you probably want something stronger than what is proposed. It is easy to ensure
that cookies only work once if you have a database table that maps cookie values to user
names.

Some banks think that things like SecurID's tokens are worth the money.

FYI you can throw money at the SSL performance problem. An outfit called nCipher sells gigabit
ethernet adapters with both TCP and SSL done on the hardware. Disclaimer: nCipher will be
employing me in the near future :-)

(Log in to post comments)

Secruit should depend on the impact

Posted May 10, 2008 15:42 UTC (Sat) by dvdeug (subscriber, #10998) [Link] 

It seems like foolish economy to not worry about doing things right when the cost of doing
things right is cheap. As for LWN, that's assuming that none of the administrator groups have
magic powers, and it's also assuming that the cost of letting people masquerade as other
people is minimal, which it arguably isn't.

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds