[cap-talk] Any hope in RSA 2008?
David Wagner
daw at cs.berkeley.edu
Fri Apr 4 09:39:03 CDT 2008
Folks on the Linux kernel mailing list seem to have a saying for
when someone says "Wouldn't it be nice if the kernel had feature X?"
(when that someone seems to be implicitly expecting someone else to
implement feature X for them). The response is: "Send code." The
implication being that, of course, code is often a lot more useful
than gripes. And for those who aren't willing or able to write code
or to provide resources (money) to enable others to write code, well,
maybe they shouldn't complain too much.
That brings me to the complaints about the current state of research on
computer security. To that, I can only say: "Send research." I'm of
the opinion that leading by doing (by forging ahead and setting the kind
of example you'd like to see others follow) tends to be more effective
than complaining that everyone else's work in this area sucks. Before
criticizing researchers too harshly, spend some time in their shoes.
More information about the cap-talk
mailing list