Increasingly I can see a future in which defense has no practical understanding of modern attacks.
-
-
We take so much for granted. There are incredible structural pressures against independent and open attack research.
-
True fact. Tendency is to parse independent attack research as a risk event rather than risk release – latter can be a hard sell

- 2 more replies
New conversation -
-
-
I strongly suspect this happened in crypto 40 years ago.
-
What makes you say this when crypto primitives are typically the strongest part of a security application?
End of conversation
New conversation -
-
-
I've got a new market for you
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
A lot of practical attacks aren't sexy enough to put the effort into researching for publicity/fame...or lack thereof.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
aren't we there already?
-
yeap
End of conversation
New conversation -
-
-
How do you ensure that independent open attack research doesn't diverge from practical attacks though? How do you see the predictive value?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Since there are so many possible attack types/paths, you could argue that we should focus on studying and understanding actual attacks?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.