Many technologists fail to appreciate that security is not something which businesses want to provide at all margins. (Consumers are similar; they're unwilling to literally or figuratively pay for security at all margins, too.)
-
-
"You're being facetious about bank robberies, Patrick" No I'm not. The direct cost of them is clustered around $8k per, which is less than the minimum buy-in for a lawsuit, which is why Don't Be A Hero is the first thing every bank employee learns at every training about this.
Show this thread -
Society distributes the cost of bank robberies thus: To deter potential scalable robberies, there is a bit of private investment in looking secure and some public investment in making "career bank robber" and "career prisoner" effectively synonymous. Losses? Bank pays, the end.
Show this thread
End of conversation
New conversation -
-
-
It's just taken as axiomatic that the consumer won't be compensated for loss resulting from security incidents, even under a court order (Equifax passim), so there's no reason to back down from demanding total security
-
That axiom is trivially false; customers are routinely compensated (via indemnification) for security incidents. The argument over Equifax is whether they should additionally be paid for preemptive defense or in excess of realized monetary damages.
End of conversation
New conversation -
-
-
More mature industries make this explicit & competent professionals don’t worry about it much.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.