19
Why Information Security is Hard: An Economic Perspective – Ross Anderson, 2001
zAsymmetry of security
ySuppose Windows has 1M bugs, each with MBTF of 1B hrs
ySuppose Paddy works for the IRA, trying to hack the British Army’s Windows systems
ySuppose Brian is the British Army assurance guy in charge of blocking Paddy
yPaddy has a day job – so he can only test 1000 hrs/yr
yBrian has full Windows source code, dozens of Ph.D.s at his disposal, etc. – 10M hrs/yr of testing