[cap-talk] Capabilities and Freedom vs. Safety
david.hopwood at industrial-designers.co.uk
Sat Jul 28 19:50:18 EDT 2007
James A. Donald wrote:
> Security must be based on real attacks and real threats,
> not on "proofs" of security which have little contact
> with reality external to that proof.
The attitude expressed here seems to me to be quite misplaced.
Certainly models must as realistic as needed for the conclusions
derived from them to be valid. But if you want to argue that a
particular model is not sufficiently realistic, argue the specifics --
don't insinuate (without quite saying so, but certainly intending to
imply it) that proofs in general have "little contact with reality".
David Hopwood <david.hopwood at industrial-designers.co.uk>
More information about the cap-talk