Three years ago, I was wishing for accurate IT Epidemiology metrics. My conclusion is, it was unlikely to happen as long as the Security industry was dominated by secrecy, superstition and self-interest.
But, just close your eyes and wish with me. If the NSA was restructured as Schneier proposed, we might end up with a well funded government group devoted to the defense of the internet.
- We would get meaningful metrics that help us define the effectiveness of various security measures.
- We could eliminate the specter of mass DoS attacks.
- We would dismantle the large criminal botnets.
But, the forces of death and destruction have grown so potent, so fearless, it seems they believe we can’t turn away from our dark path.
I pray we can somehow prove them wrong.
