taxonomies – WindowsTechs.com

A Taxonomy of Access Control

Posted on August 12, 2022 by Bruce Schneier

My personal definition of a brilliant idea is one that is immediately obvious once it’s explained, but no one has thought of it before. I can’t believe that no one has described this taxonomy of access control before Ittay Eyal laid it out in this paper. The paper is about cryptocurrency wallet design, but the ideas are more general. Ittay points out that a key—or an account, or anything similar—can be in one of four states:

safe Only the user has access,
loss No one has access,
leak Both the user and the adversary have access, or
theft Only the adversary has access…

Continue reading A Taxonomy of Access Control→

Failure Modes in Machine Learning

Posted on December 9, 2019 by Bruce Schneier

Interesting taxonomy of machine-learning failures (pdf) that encompasses both mistakes and attacks, or — in their words — intentional and unintentional failure modes. It’s a good basis for threat modeling…. Continue reading Failure Modes in Machine Learning→

New Paper on Encryption Workarounds

Posted on March 22, 2017 by Bruce Schneier

I have written a paper with Orin Kerr on encryption workarounds. Our goal wasn’t to make any policy recommendations. (That was a good thing, since we probably don’t agree on any.) Our goal was to present a taxonomy of different workarounds, and discuss their technical and legal characteristics and complications. Abstract: The widespread use of encryption has triggered a new… Continue reading New Paper on Encryption Workarounds→