That's an odd place to stop your relative privation, why not go even further, and include homelessness and world hunger? There are lots of problems in security, the distribution of effort feels about right to me - thousands working on phishing and malware, and a dozen in P0. 
-
-
Replying to @chrisrohlf @halvarflake
I'm not taking it personally, I'm answering your question. What do you feel the correct distribution of effort is, literally everybody should be working on the worst problems facing mankind?
0 replies 0 retweets 0 likes -
Replying to @chrisrohlf @halvarflake
So you agree it is appropriate to expend some effort on solving some of the problems facing mankind *other* than phishing? Clearly some very unpleasant people are using 0day exploits to commit horrible crimes, how many people should work on that?
0 replies 0 retweets 3 likes -
Serious question: if raising the lower bar a few feet would be so beneficial why is nobody willing to pay for it to happen? Wouldn't the gov or finance world be willing to cover this? The lack of support is an indicator that maybe it's more complicated...
0 replies 0 retweets 1 like -
Do you argue it's impossible to add a bounds check *and* ask people to turn on 2FA? If not, then what's the problem? We can work on these important problems independently, they are not mutually exclusive.
0 replies 0 retweets 4 likes
I don't agree, getting U2F/webauthn support shipped in browsers and making whitelisting usable (iOS, ChromeOS, etc) are huge impactful projects. Both problems seem to have significant advances, are you sure this isn't security nihilism? 
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.