I don't see sillysaurus3 defending Equifax. I see him talking about the elephant in the living room. No system is invulnerable yet the fortune and well being of half (or more) of the population of our planet depends on those systems being safe. We need a new paradigm. The basic principles of security, no matter how skillfully and deeply applied are inadequate to defend against a determined attacker. We need a new paradigm. I'm not sure what that is, and as long time Microsoft detractor, I'm loathe to say maybe Azure's just-announced secure enclave architecture just might be that new paradigm. Of course, I'm sure they'll fuck it up some way or another.
You're right. I mischaracterized sillysaurus3's position. I would only argue that there are different levels of competence in protecting data and some company has to be the worst. So far, Equifax seems to be that company. Right now, they are deserving of scorn. At the same time, sure, it's good to recognize that we're failing at security as an industry.
I agree with you 100%. I prefer to characterize our current security landscape as the "Bear Attack" model. If you run slow the bear will eat you first. But even if you run faster than anyone else the bear will still eat you when she catches you.
