Bruce Schneier has some interesting comments at RSA 2007 London about the human brain and our ability to understand IT security.
From IT News Australia:
Human beings aren’t evolved for security in the modern world, and particularly the IT security world, according to security guru Bruce Schneier.
He told delegates at the 2007 RSA Conference that there is a gap between the reality of security and the emotional feel of security due to the way our brains have evolved. This leads to people making bad choices.
“As a species we got really good at estimating risk in an East African village 100,000 years ago. But in 2007 London? Modern times are harder.”
Our brains evolved to deal with the reality of security, but emotional aspects also have a big role, he added.
So, then in order to be successful in security I have to be cold, detached and unfeeling? Wow, I have an ex-girlfriend that I should ring up and see if she wants a job.
[tags]Bruce Schneier, IT Security, Human Element in Security[/tags]
