Introduction: Depending on a person’s profession, field of study and life experience, the mental model she forms of “attacker” and “security” while reading the extract below could diverge wildly from the next person. This divergence can be revealed when, say, a mathematician actually bothers to ask a biologist if public health workers think in the “prevent-detect-respond” framework, which the mathematician had assumed. Assuming. Assuming everyone thinks *the way we think they’re thinking* … isn’t foolproof. So we ask.
Detection Works Where Prevention Fails
"The ideal of any security system is to prevent an attack. but prevention is the hardest aspect of security to implement, and often the most expensive. To be practical as well as effective, almost all modern security systems combine prevention with detection and response, forming a triad that operates as an integrated system to provide dynamic security, resilient failure, and defense in depth. Audits (retrospective detection) and pred…
Keep reading with a 7-day free trial
Subscribe to TracingVRL to keep reading this post and get 7 days of free access to the full post archives.