The article is about security in the large, not cryptography specifically, but
http://www.eweek.com/security/enterprises-apply-wrong-policies-when-blocking-cloud-sites-says-study.html
points out that many companies think that they are increasing their security
by blocking access to sites they consider risky - only to have their users
migrate to less well known sites doing the same thing - and those less well
known sites are often considerably riskier.
My favorite quote: "One customer found a user who sent out a million tweets in
a day, but in reality, its compromised systems were exporting data 140
characters at a time via the tweets."
-- Jerry
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
