Shamir’s Singularity: The End of Security

“The battle is over. We lost.” This gloomy proclamation was made by a world-famous security expert at a professional association chapter meeting. (You know who are, Bruce.) It was before Equifax, DNC, Sony, Yahoo, Target, and other recent mega-breaches. But even then, attackers were making rapid gains, while defenders seemed to fall further behind. This trend became known as “Shamir’s Law” in 2007, when renowned cryptographer Adi Shamir suggested it at a security conference. Modeled on the famous Moore’s Law, which posits that computing power doubles every 18 months, Shamir’s Law states: “Every 18 months, computer security gets 50% worse.” Especially after Equifax, it’s starting to look

Open Letter to Equifax

Dear Equifax, In the aftermath of the most serious consumer data theft in US history, steps you take to restore the trust of consumers, customers, and investors are critical. Frankly, you seem to be off to a rocky start. Here are ten things you can do to rebuild trust: 1. Stop asking for last six digits of SSN on . The breach already undermined SSN privacy enough. Why not “eat your own dog food” and use your FraudIQ® Authenticate service instead? 2. Waive the fee on security freezes. People affected by the breach shouldn’t have to pay you $5 to $10 to protect themselves. 3. Stop using today’s date as a secret PIN. After consumers pay to place a security freez


a blog about cybersecurity

© 2020 Taproot Security

This site uses cookies for security.

Our cookies do not store personal information.