Another Security Survey - Who Reads this Stuff?

November 21st, 2007 Drazen Drazic Posted in Disclosure Laws, Dumb Security, Research, Risk Management, WTF, cyber crime |

If you’ve read BorB for a while, you know my thoughts on security surveys. I’d put the Beast or Buddha polls up against most of these surveys for relevance and informational value most times.

So another has now been announced. See this Computerworld Australia story. 10 questions, as like most surveys, very subjective and final results providing what real world value? Look, anyone raising awareness of security issues, I do in a way congratulate them but lets try not to lose focus of the issues and the root cause of the problems we have. Just read the previous interview with MjR and map that against the survey questions and objectives. See my point? Anything new we’ll learn?

Not sure what the following quote was based upon from the story?!?!

“The risk is to remain vigilant and to not become complacent,” Warrilow said, adding the success of denial-of-service attacks and/or unauthorized penetration appears low.”

Does “vendor hype” actually reflect what is going on out there? Come on!

Anyway, I’ve given it some publicity, have a look for yourselves and become part of the statistics.