On Shifting “Windows” and “Security” from Less Antonymous to More Synonymous

Whether or not you use any of the operating systems within the Windows family, there's no denying the impact they have or audience they reach. Back in May of 2006, I was browsing through Bruce Schneier's blog, "Schneier on Security," and came across an entry entitled, "Microsoft's BitLocker." He is, as most who have been in the realm of academic cryptography are, quite strict and liberal when it comes to reprimanding those who try to pass off crummy cryptography to the public. I figured that this could be another unlucky selectee of his infamous "The Doghouse" entries, in which he calls out the ridiculous. Fortunately, it turned out to be the opposite. What followed was a mixture of praise and proverbs, about trust, assurance, and good cryptographic design.

I extend my utmost gratitude to Phil Zimmermann, for his invaluable insight into establishing and maintaining trust and assurance in cryptographic software. And, my hat's off to Niels Ferguson, for making sure BitLocker is as cryptographically sound as possible, as well as providing the kind of documentation we, the cryptographic community, would expect from a cryptographer.

Read: [HTML] [PDF]