The Initial Costs and Maintenance Costs of Protocols

(Transcript of Discussion)
  • Ross Anderson
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4631)


I’d planned to talk about usability and maintainability – in my view, likely to be the two most important research topics in security over the next five years. As everybody’s talked about usability, I will talk a bit more about maintainability.

In the old days we always considered that security was about bootstrapping. Once Alice and Bob could be induced to share a key, job done: we go off down the pub and the following day we write the paper. This is a bit like software engineering 30 years ago where people just studied the waterfall model. But the real world nowadays is different. Nobody’s interested in waterfall; everybody’s interested in evolutionary development, extreme programming and so on. The maintenance is the product - because almost all your costs fall at points in the system development lifecycle other the first one.


Initial Cost Bank Branch Threat Model White Node Black Node 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer-Verlag Berlin Heidelberg 2007

Authors and Affiliations

  • Ross Anderson
    • 1
  1. 1.University of Cambridge 

Personalised recommendations