[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-talk] FBI cracked Tor security
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 07/18/2016 07:14 PM, Jon Tullett wrote:
> On 18 July 2016 at 18:15, Spencer <spencerone@xxxxxxxxxxxxxxx>
> wrote:
>> Hi,
>>
>>>
>>> Jon Tullett: you just asked a user to conduct a risk analysis.
>>>
>>
>> Who else should do it, someone less contextualized to their
>> context?
>
> Context matters. Mirimir was asking for what amounts to a very
> complex assessment measuring risk in monetary terms. Anyone who can
> do that reliably can get a very high paid job doing so. It's really
> not trivial.
I used money because it makes it real. Most people simply can't afford
to defend themselves. May I should find some examples.
> Absolutely individuals should conduct their own risk assessments.
> But not in those terms. For most consumers, security is not about
> money. Going to jail is about freedom and personal safety, not
> cash.
Ask someone who's been arrested ;)
> Even losing data is a balance between losing work (money) and
> personal items (sentimental value, not money).
How did losing data get into this? Maybe having computer gear
impounded? Or neglecting backups?
> Understanding your risk profile, for most people, actually has
> relatively little to do with money
You can measure it however you like. The point is that, unless
prompted, people tend to discount risk.
> (though "losing all my money to phishing" is absolutely a risk to
> be considered).
Phishing is arguably no worse a risk for Tor users.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.22 (GNU/Linux)
iQEcBAEBAgAGBQJXjcxQAAoJEGINZVEXwuQ+oksH/2T4O3fU0ggM4si8V7m3RJxU
84aWEnHB4qgml+MLA4zsmNbRbogJgFkDSkARS67RoT0st2naCMMI8Be/4p2Pnvfd
AEQq4w0SKYk//c9NMfZ16SUzGSi4LzgWOzhRTygNqo2B2mBQqcpOVRwTVeDLJcMu
nVlCBdySCvlcIxlp89HYeN9xGRrclV3ZiaxSYtJzDNwtFJhbD0iV5d4Yk9T4MljV
KF6lHt48+sI+FKCwM53f3o4WmFQFbOeIelhxJ6RUSMq51s9RNdAvY8uh5dvMDGPw
msvVUF6u0axfIfuP52cKaXDFKc2q8lRhUSFkklnKbnathqkdLtMDQ6K/Tbb+G8E=
=OQ72
-----END PGP SIGNATURE-----
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk