[cap-talk] Butler Lampson does it again
Karp, Alan H
alan.karp at hp.com
Mon Dec 21 13:29:35 PST 2009
The November issue of CACM has an article by Butler Lampson titled "Usable Security: How to Get It" in which he concludes you can't. As with all his recent work he assumes a particular access control model which almost guarantees his conclusion. His only solution to limiting the damage that can be done when an attack succeeds is to have a "green" computer for important stuff, such as banking, and a "red" computer for general surfing. Of course, he admits that the "green" machine isn't really secure and that he doesn't know how to give users some control over moving information between the two machines without compromising security.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list