Presentation: "Security Architectures versus Security"
Time: Thursday 15:35 - 16:35
Location: Concordia Room
Abstract: A system can be neither more secure nor more usable than the level of brokenness of the fundamental security architecture. Here we examine a number of widely popular security architectures on the Web including the Independence Day Evil Alien Architecture, the Gilded Cage, and Gone Phishin'. An audience participation section explores which popular modern systems fall into which broken architecture categories. We finish with a look at less popular but more effective architectures now becoming available, and the tools and techniques to exploit these better alternatives.