THE MISUNDERSTOOD MYTH

Let me get flamed here, there will never be total security. How can I say this when elsewhere I have slammed others for saying this (see here)? Simple, I stand by both statements as I believe both are true. You see, I do not think that we should ever settle for or be happy with less then 100% security, but the chances of us getting to that level without hard work are slim. Note that I did not say impossible, but slim. And note that I said that we should all aim for that slim possibility. So what stops us from getting there?

Ghosts in the machines
It may help if you relate your network to the idea of a biological entity. Think of any living creature (what you choose is up to you ... and the operating systems you run). Seriously though, think of a person. Why do people carry on catching colds? Why has this virus had such a hold on mankind?
Give up now?
I suppose I can make it seem rather hopeless. That is not my intent, rather I just want people to understand that a 100% secure network today, can be rendered vulnerable by tomorrows exploit, that we must never rest on our laurels because things change, they mutate, they grow, and all this change means we have to adapt our countermeasures. We can make our networks secure, we just have to work a lot harder at doing it then most people think or are comfortable with. So be realistic. Let me end with this quote..
 
"The price of freedom is eternal vigilance" -- Thomas Jefferson