On Shifting “Windows” and “Security” from Less Antonymous to More Synonymous

(Page 8)

Tight integration with a lack of modularity leads to complexity. A particular Portuguese idiom paints a realistically surreal portrait of what complexity might look like, if it were a Herculean foe. That is, “bicho de sete cabeças,” which literally translates to, “creature of seven heads.” The underlying meaning it expresses is that of treacherous complexity. (My favorite Brazilian – a Mineira, to be exact – made sure my infantile Brazilian Portuguese was polished and pristine for the sake of this article, so it's with her help that I'm confident enough to speak with a foreign tongue!) All in all, this may not even be the case with Vista, but only when an ample supply of analysis becomes available will we see what the situation looks like.

I was recently asked, “So, what do you think about BitLocker?” The answer is two-fold, really. Even if it turns out to be not-so-good, from a cryptographic standpoint, I still tip my hat to Microsoft's System Integrity Team. Why? Because Microsoft ushered in the cryptographers who did things like they should be done – like a cryptographer. You'd be surprised at how many cryptographic systems are designed without the aid of anyone actually well-versed enough in cryptography to be designing such a system to begin with! For me to say, “BitLocker should be taken seriously,” is reasonable. This is setting aside the verdict of whether or not its security is sound. Many a cryptographic primitive and protocol have been broken, but at the same time, given us a platform of understanding for building something better. If anything, BitLocker is this platform; it could even be solid enough to hold its own.

Before you moan and wail about the stereotypical surface of things – that is, Microsoft doing security – pay attention to the cryptographic philosophies that begat BitLocker. There's no better time to shift the paradigm of how folks perceive Microsoft's attention to cryptographic detail, and in my humble opinion as a gradually maturing cryptographer, Microsoft is exhibiting a healthy helping of potential in this regard. My hat's off to you, System Integrity Team.

< 1 2 3 4 5 6 7 8 >