The Initial Costs and Maintenance Costs of Protocols
I’d planned to talk about usability and maintainability – in my view, likely to be the two most important research topics in security over the next five years. As everybody’s talked about usability, I will talk a bit more about maintainability.
In the old days we always considered that security was about bootstrapping. Once Alice and Bob could be induced to share a key, job done: we go off down the pub and the following day we write the paper. This is a bit like software engineering 30 years ago where people just studied the waterfall model. But the real world nowadays is different. Nobody’s interested in waterfall; everybody’s interested in evolutionary development, extreme programming and so on. The maintenance is the product - because almost all your costs fall at points in the system development lifecycle other the first one.
KeywordsInitial Cost Bank Branch Threat Model White Node Black Node
Unable to display preview. Download preview PDF.