[cap-talk] More Heresey: ACLs not inherently bad
James A. Donald
jamesd at echeque.com
Thu Oct 2 21:55:53 CDT 2008
>> Encryption can be made hard to use, but the Windows EFS is transparent to the user, and other approaches are equally easy to use.
Raoul Duke wrote:
> reading the docs on how to get multiple users looking at the same file
> on EFS on XP, therein lies the rub - there are as many different
> definitions of "easy" as there are (use cases)*(persons involved in
> said use cases).
>
> that will always be true, so it isn't like the point is that we can
> make the encrypted situation as usable as the unencrypted situation or
> else just completely give up. the point is that we need to be really
> careful about figuring out just how big the delta can be before people
> say "eh, screw it".
Skype IM is almost as easy to use as unencrypted IM, SSH is slightly
trickier than telnet, but the difference is scarcely noticeable.
Skype and SSH demonstrate that encryption, done right, can be easy to
use. Unfortunately "doing it right" usually means starting over with
total incompatibility with existing protocols and infrastructure.
More information about the cap-talk
mailing list