Endorsement: Aaron Margosis’s Unintended Consequences of Security Lockdowns talk at TechEd


At TechEd 2011 North America in Atlanta, Aaron Margosis is presenting a talk on Unintended Consequences of Security Lockdowns. I've seen the internal version of his talk and I give it two thumbs up. If you're going to be at TechEd North America, consider adding it to your schedule.

Comments (6)
  1. Billy O'Neal says:

    If I get to go, will certainly go to see it. :)

  2. Chad says:

    Are TechEd presentations typically put online after a short period of time (a few weeks)? This sounds like an interesting presentation.

  3. Chad says:

    Apologies for not reading the comments on the linked article: [Aaron Margosis]  Recordings are usually published on http://www.msteched.com.

  4. Inactive Cargo says:

    Is the first article in a series on lockdown free programming?

  5. Worf says:

    I hope someone reminds me when the videos are posted. It sounds like it'll be a great talk at dispelling a lot of secure system folk tales that are spread.

    Only now do people start to realize frequently changed passwords do not necessarily enhance security, but may actually make systems much less secure.

  6. Gabe says:

    Worf: It's not clear that the talk is necessarily about high-level issues like "making passwords hard to guess makes them hard to remember so people write them on notes next to their keyboard". I have a feeling it's more along the lines of "if you lock down this registry key, your application may see a virtualized view of it that's different from what Regedit shows, breaking your admin scripts".

    [You're right, Gabe. It's the latter type of thing. Not social consequences but technical ones. "If you enable this security policy, then these things stop working. Oh, and that security policy doesn't do what you think it does, anyway." -Raymond]

Comments are closed.