Profile picture
Ryan Hurst @rmhrisk
, 7 tweets, 2 min read Read on Twitter
Insider Risk is an area that is commonly underestimated despite how common it is. Here is some survey data on the topic: ca.com/content/dam/ca…
There are lot's of ways to mitigate risk but one thing is for sure, you can not manage what you can not measure. For this reason, designing your systems in such a way they are transparent is one of the more impactful things you can do to address these risks.
One interesting side effect of building the transparency into a system is that its existence disincentivizes actors from abusing their position. Afterall if you do something wrong and you are sure to get caught your less likely to do so in the first place.
When you take the transparency to the next step ensuring that it minimizes trust and is independently auditable and reliable by all parties in your ecosystem you raise the bar even further.
Building on top of that when you make the system self-enforcing, only functioning when the auditing has taken place, you not only disincentivize the act in the first place you literally make it harder to do.
This approach considers the realities of the world we live in and considers the economic and personal interests to an attacker and raises their "cost" of an attack by both reducing the chance of the attack and making the chances of getting caught higher.
These are some of the reasons I like the concepts of Generalized Transparency that back Certificate Transparency, Key Transparency and the other applications of the github.com/google/trillian platform.
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Ryan Hurst
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related threads

Profile picture
Want to see something interesting? Let's compare the climate policies of leading corporations.
/THREAD
I’ll provide excerpts from each organizations' policies to give a general feel for the content, or to point out interesting comments. Pls do NOT draw conclusions only from the passages I chose. Pls take the time to read the full policies on your own so you understand the context.
The following entities are mostly US based corporations, and for the most part are the largest players in their respective industry.
Let's start with O&G companies.
Read 47 tweets
Profile picture
Here's a good preliminary recap, from @holden, of the Newspapers on Wikipedia project he started last May. But I strenuously object to even a hint of disappointment in the outcomes! Several reasons...I'll make my own short thread to outline them.
1. The hint of disappointment comes from the goal of doing 1,000 papers. But that goal was totally arbitrary! What funding this project had (which was highly significant, but also -- as a testament to the project's design -- tiny, in terms of the work produced) was proportional.
...That is, hitting only 25% of the goal means that our funder made only 25% of anticipated expenditures. It's entirely unlike most funded projects, in which "falling short of the goal" implies that a funder's money was wasted. That simply wasn't the case here.
Read 13 tweets
Profile picture
It seems @YouTube removed the footage of the Q & A statement on the visit to the UK, by @Alston_UNSR, UN Special Rapporteur on extreme poverty & human rights. @theresa_may & @AmberRuddHR both dismiss it - judge for yourself. Here it is in document form: ohchr.org/Documents/Issu…
I am going to use this thread to share some of the data that is referenced from this report. Because it matters and isn't shared enough.
A new measure of poverty for the UK: The final report of the Social Metrics Commission. September 2018. Full report - socialmetricscommission.org.uk/MEASURING-POVE…
Via @jrf_uk Destitution in the UK (June) 2018. Full Report: jrf.org.uk/report/destitu…

"1,550,000 people, including 365,000 children, were destitute in the UK during 2017. They could not afford to buy the bare essentials we all need to eat, stay warm, dry, & clean."
Read 27 tweets
Profile picture
Here's my problem with the "But we're in it for the policy" brand of Republicans who do nothing on Trump. For one thing, cutting taxes in this fiscal and economic situation was stupid. Huge deficits and higher interest rates. Woohoo, good job there, guys. Moving on (1/x)
allowing someone to co-opt you via mutual interest is immoral. Let's use a personal example of where you know someone uses their "legitimate" business to finance criminal operations. However, that "legitimate" business is the best, say, roofing contractor in town (2/x)
You say, "Look, I don't approve of the fact that they take the money I pay them for roofing and use it to support their drug trade, but damn it they're good at roofing and I need my roof done right now." Well, there's a moral problem. Your mutual interest supports (3/x)
Read 6 tweets
Profile picture
Tagging companies on the list of Planned Murderhood contributors. I am DISGUSTED with every single one of you on this list. Some of the names are really shocking considering the business you are in and the fact that income form those businesses you would spend on killing babies
You ALL participated and most are STILL participating in MURDERING of innocent AMERICAN lives. Your resources could be spent on medical care, childcare, playgrounds, education... Instead you choose to follow the leftist agenda and POWER over doing the RIGHT THING.
@Adobe
@AmericanCancer
@AmericanExpress
@ATT
@AvonInsider
@BankofAmerica
@bathanbody
@benandjerrys
@Clorox
@CocaCola
@Converse
@DeutscheBank
@Dockers
@Energizer
@Expedia
@exxonmobil
@FannieMae
@Ford
@Groupon
@Intuit
@JNJParents
@LaSenza
@LeviStraussCo
@LibertyMutual
Read 166 tweets
Profile picture
So, it's about time I finally did it. Join me as I play Thief: The Dark Project; I've never got further than The Sword before. Thanks to the No Spiders mod from @adurdin I hope to actually finish it this time. #ThiefTDP
I'll be playing Thief Gold. I have multiple copies of The Dark Project but they'd require me to dig through boxes to find. Thief Gold is the only one reliably available online. I am reserving the right to level skip past the Thieves Guild, though. #ThiefTDP
I'll be using the New Dark version, but sticking to a 4:3 aspect ratio. #ThiefTDP
Read 639 tweets

Trending hashtags

#AadhaarInfo #spy #POTENTIAL #sue #Department #poverty #WiN #Profiling #YOU #coal #NoShitSherlock #Readers #APT10 #extended #RameshDamani #project #society #FaceHerFuture #disinformation #unfair #MERCY #Nostalgia #Texas #Skripal #possible

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!