|
|
|
Top Stories
|
The trinity of RIA security explained8 Apr 2008 10:02 Of servers, data and policies
I miss read the title as:By Anonymous Coward
Posted Tuesday 8th April 2008 10:52 GMT
 ‘The trinity of IRA security explained’. I expected a detailed piece on Knee-Capping, Intimidation and Bombing... Which I could follow up with a query for the I.T. angle... In my defence, Paris would have been confused, too. The trinity of RIA security RE-explainedBy DaveK
Posted Tuesday 8th April 2008 14:25 GMT
 The trinity of RIA security can best be summed up as: Zip, Nada, Zilch. We've known this ever since Active-X was first deployed. Here's Microsoft's "First immutable law of computer security": "Law #1: If a bad guy can persuade you to run his program on your computer, it's not your computer anymore." Here's DaveK's corollorary to the first immutable law of computer security: > If you let remote websites execute code on your computer, it's not your computer any more. When combined with DaveK's axiom of rich internet application security: > Microsoft invented Active-X /so/ that remote websites can execute code on your computer. It leads us to DaveK's syllogisms of computer security: >1. If you let Microsoft execute code on your computer, it's not your computer any more. >2. Microsoft are the "bad guys". The period for commenting on this story has finished |
Breaking Hardware News
Intel is preparing solid-state drives with sustained read and write speeds of 240MB/s and 70MB/s, respectively.
Newsletter |
|
![[Mobile]](/Design/graphics/icons/mobile.png "The Register Mobile"){kind=icon}
