On 12/7/07, badeguruji <[EMAIL PROTECTED]> wrote: > Steve, you were able to understand my concern/wish. > Aren't all security experts, just building their own > islands with the problem [of unsecure space] remaining > as it always was? we should try to build a secure > 'atmosphere' where 'clouds of all colors/density' can > freely glide with less caution in mind? A frame-work > for internet security like Java, where all different > kind of web-servers(and all other apps for that > matter) can concentrate on their job, rather then > worrying about security - is needed.
See, that requires trusting the other 'security experts' are actually being honest and working for each others benefit... but that system isn't secure, how do you distinguish 'security expert' from 'infiltrator'? You *must* have decentralized systems/methods for this. There's no way to combine data together, the best you can do is share techniques which you can verify with your own logic -- except for blacklists like SPEWS, and even then there are all sorts of politics and troubles. -Nick
